Skip to content

Commit

Permalink
ci: ignore centos CVE-2020-22218 and CVE-2023-3341 (#369)
Browse files Browse the repository at this point in the history
Signed-off-by: Sertac Ozercan <sozercan@gmail.com>
  • Loading branch information
sozercan authored Oct 16, 2023
1 parent ed77375 commit ff4fb01
Showing 1 changed file with 11 additions and 3 deletions.
14 changes: 11 additions & 3 deletions integration/fixtures/trivy_ignore.rego
Original file line number Diff line number Diff line change
Expand Up @@ -4,8 +4,16 @@ import data.lib.trivy

default ignore = false

# Ignore the following Vulnerability IDs
ignore_vulnerability_ids := {
# centos 7.6.1810
# bind-license package version "9.11.4-26.P2.el7_9.14" does not exist
"CVE-2023-2828"
}
# bind-license package version "9.11.4-26.P2.el7_9.15" does not exist
"CVE-2023-3341",
# libssh2 package version "1.8.0-4.el7_9.1" does not exist yet
"CVE-2020-22218"
}

# For ignoring vulnID
ignore {
input.VulnerabilityID == ignore_vulnerability_ids[_]
}

0 comments on commit ff4fb01

Please sign in to comment.