Skip to content

Commit fe81d8c

Browse files
scope pipelines, allowlist go CVE
1 parent e8be488 commit fe81d8c

3 files changed

Lines changed: 9 additions & 0 deletions

File tree

.github/workflows/vllm.pr-amzn2023.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -13,6 +13,8 @@ on:
1313
- "scripts/docker/common/**"
1414
- "scripts/docker/telemetry/**"
1515
- "scripts/docker/vllm/**"
16+
# omni_* scripts belong to vllm_omni only
17+
- "!scripts/docker/vllm/omni_*"
1618
- "test/efa/**"
1719
- "test/sanity/**"
1820
- "test/security/data/ecr_scan_allowlist/vllm_server/**"

.github/workflows/vllm.pr-ubuntu.yml

Lines changed: 2 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -13,6 +13,8 @@ on:
1313
- "scripts/docker/common/**"
1414
- "scripts/docker/telemetry/**"
1515
- "scripts/docker/vllm/**"
16+
# omni_* scripts belong to vllm_omni only
17+
- "!scripts/docker/vllm/omni_*"
1618
- "test/efa/**"
1719
- "test/sanity/**"
1820
- "test/security/data/ecr_scan_allowlist/vllm/**"

test/security/data/ecr_scan_allowlist/vllm_omni/framework_allowlist.json

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -69,6 +69,11 @@
6969
"reason": "go/stdlib in mooncake/libetcd_wrapper.so, unpatchable without mooncake upgrade",
7070
"review_by": "2026-08-25"
7171
},
72+
{
73+
"vulnerability_id": "CVE-2026-27145",
74+
"reason": "go/stdlib in mooncake/libetcd_wrapper.so, unpatchable without mooncake upgrade",
75+
"review_by": "2026-08-25"
76+
},
7277
{
7378
"vulnerability_id": "RUSTSEC-2026-0185",
7479
"reason": "quinn-proto in uv binary, upstream uv has not released a fix yet",

0 commit comments

Comments
 (0)