diff --git a/.nancy-ignore b/.nancy-ignore index 3398d5d83..1866fa0fb 100644 --- a/.nancy-ignore +++ b/.nancy-ignore @@ -1,59 +1,9 @@ -# pkg:golang/github.com/gin-gonic/gin@v1.4.0 -sonatype-2020-0921 until=2023-11-30 -CVE-2020-28483 until=2023-11-30 - -# pkg:golang/github.com/gin-gonic/gin@v1.9.0 -CVE-2023-29401 until=2023-11-30 - -# pkg:golang/github.com/hashicorp/consul/api@v1.15.3 -CVE-2022-29153 until=2023-11-30 - -# pkg:golang/github.com/hashicorp/consul/sdk@v0.8.0 -CVE-2022-29153 until=2023-11-30 -CVE-2021-41803 until=2023-11-30 -CVE-2022-24687 until=2023-11-30 - -# pkg:golang/github.com/kataras/iris/v12@v12.1.8 -CVE-2021-23772 until=2023-11-30 - -# pkg:golang/github.com/labstack/echo/v4@v4.5.0 -sonatype-2022-5436 until=2023-11-30 - -# pkg:golang/github.com/mholt/archiver/v3@v3.5.1 -sonatype-2021-0276 until=2023-11-30 - -# pkg:golang/github.com/microcosm-cc/bluemonday@v1.0.2 -CVE-2021-42576 until=2023-11-30 - -# pkg:golang/github.com/nats-io/jwt@v0.3.2 -CVE-2020-26892 until=2023-11-30 -CVE-2021-3127 until=2023-11-30 - -# pkg:golang/github.com/urfave/negroni@v1.0.0 -sonatype-2021-1485 until=2023-11-30 - -# pkg:golang/github.com/valyala/fasthttp@v1.6.0 -CVE-2022-21221 until=2023-11-30 - -# pkg:golang/k8s.io/apiserver@v0.25.2 -sonatype-2022-6522 until=2023-11-30 - # pkg:golang/github.com/containerd/containerd@v1.6.12 -CVE-2023-25173 until=2023-11-30 -CVE-2023-25153 until=2023-11-30 - -# pkg:golang/github.com/denisenkom/go-mssqldb@v0.9.0 -sonatype-2023-1010 until=2023-11-30 - -# pkg:golang/github.com/opencontainers/runc@v1.1.2 -CVE-2023-28642 until=2023-11-30 -CVE-2023-27561 until=2023-11-30 -CVE-2023-25809 until=2023-11-30 - -# pkg:golang/golang.org/x/net@v0.5.0 -CVE-2022-41723 until=2023-11-30 +CVE-2023-25173 until=2023-12-31 +CVE-2023-25153 until=2023-12-31 # pkg:golang/k8s.io/apiserver@v0.25.2 -CVE-2020-8561 until=2023-11-30 +CVE-2020-8561 until=2023-12-31 -CVE-2023-25165 until=2023-11-30 +# pkg:golang/helm.sh/helm/v3@v3.10.3 +CVE-2023-25165 until=2023-12-31