simle

NoResponseMate · NoResponseMate · commit eeb5f7c40ee3 · 2025-10-10T13:45:35.000+02:00
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
@@ -147,22 +147,7 @@ jobs:
                         echo
                     fi
 
-                    composer audit --no-interaction --format=json > composer-audit.json || true
-
-                    REPORTED=$(jq -r '
-                        (.advisories? // [] | .[]? | .cve? // empty),
-                        (.["ignored-advisories"]? // {} | to_entries[] | select(.value != null) | .value[] | .cve? // empty)
-                    ' composer-audit.json | sort | uniq)
-
-                    DIFF=$(comm -23 <(echo "$REPORTED") <(echo "$IGNORED"))
-
-                    if [ -n "$DIFF" ]; then
-                      echo "❌ New vulnerabilities found by Composer audit:"
-                      echo "$DIFF"
-                      exit 1
-                    else
-                      echo "✅ No new vulnerabilities found by Composer audit."
-                    fi
+                    composer audit --no-interaction --abandoned=ignore
 
                     symfony security:check --format=json > symfony-audit.json || true
 
diff --git a/composer.json b/composer.json
@@ -67,7 +67,8 @@
         },
         "audit": {
             "ignore": [
-                "CVE-2025-31481"
+                "CVE-2025-31481",
+                "CVE-2025-31485"
             ]
         }
     },
