Skip to content

Commit

Permalink
chore: remove rouille CVE from grype ignore (#2515)
Browse files Browse the repository at this point in the history 
## Description
#2457 removed rouille as a dependency

## Checklist before merging

- [x] Test, docs, adr added or updated as needed
- [x] [Contributor Guide
Steps](https://github.com/defenseunicorns/zarf/blob/main/.github/CONTRIBUTING.md#developer-workflow)
followed
  • Loading branch information
@lucasrod16
lucasrod16 committed May 16, 2024
1 parent ae47e9e commit f6fe020
Showing 1 changed file with 1 addition and 3 deletions.
4 changes: 1 addition & 3 deletions .grype.yaml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,4 @@
ignore:
# From rouille - The Zarf injector does not expose endpoints that use multipart form data
- vulnerability: GHSA-mc8h-8q98-g5hr

# From helm - This behavior was introduced intentionally, and cannot be removed without breaking backwards compatibility (some users may be relying on these values).
# https://helm.sh/blog/response-cve-2019-25210/
- vulnerability: GHSA-jw44-4f3j-q396

0 comments on commit f6fe020

Please sign in to comment.