Auto-suppress CVEs

dinesh1patel · github-actions[bot] · commit 50d4c51387eb · 2026-03-05T00:11:25.000Z
diff --git a/yarn-audit-known-issues b/yarn-audit-known-issues
@@ -6,6 +6,7 @@
 {"value":"govuk_frontend_toolkit","children":{"ID":"govuk_frontend_toolkit (deprecation)","Issue":"GOV.UK Frontend Toolkit is no longer maintained. Use the GOV.UK Design System instead: https://frontend.design-system.service.gov.uk/v4/migrating-from-legacy-products/","Severity":"moderate","Vulnerable Versions":"7.6.0","Tree Versions":["7.6.0"],"Dependents":["govuk-elements-sass@npm:3.1.3"]}}
 {"value":"govuk_template_jinja","children":{"ID":"govuk_template_jinja (deprecation)","Issue":"GOV.UK Template is no longer maintained. Use the GOV.UK Design System instead: https://frontend.design-system.service.gov.uk/v4/migrating-from-legacy-products/","Severity":"moderate","Vulnerable Versions":"0.26.0","Tree Versions":["0.26.0"],"Dependents":["ccd-admin-web@workspace:."]}}
 {"value":"govuk_template_mustache","children":{"ID":"govuk_template_mustache (deprecation)","Issue":"GOV.UK Template is no longer maintained. Use the GOV.UK Design System instead: https://frontend.design-system.service.gov.uk/v4/migrating-from-legacy-products/","Severity":"moderate","Vulnerable Versions":"0.26.0","Tree Versions":["0.26.0"],"Dependents":["ccd-admin-web@workspace:."]}}
+{"value":"immutable","children":{"ID":1113983,"Issue":"Immutable is vulnerable to Prototype Pollution","URL":"https://github.com/advisories/GHSA-wf6x-7x77-mvgw","Severity":"high","Vulnerable Versions":">=5.0.0 <5.1.5","Tree Versions":["5.1.4"],"Dependents":["sass@npm:1.97.3"]}}
 {"value":"lodash.isequal","children":{"ID":"lodash.isequal (deprecation)","Issue":"This package is deprecated. Use require('node:util').isDeepStrictEqual instead.","Severity":"moderate","Vulnerable Versions":"4.5.0","Tree Versions":["4.5.0"],"Dependents":["@fast-csv/format@npm:4.3.5"]}}
 {"value":"multer","children":{"ID":"multer (deprecation)","Issue":"Multer 1.x is impacted by a number of vulnerabilities, which have been patched in 2.x. You should upgrade to the latest 2.x version.","Severity":"moderate","Vulnerable Versions":"1.4.5-lts.2","Tree Versions":["1.4.5-lts.2"],"Dependents":["ccd-admin-web@workspace:."]}}
 {"value":"whatwg-encoding","children":{"ID":"whatwg-encoding (deprecation)","Issue":"Use @exodus/bytes instead for a more spec-conformant and faster implementation","Severity":"moderate","Vulnerable Versions":"2.0.0","Tree Versions":["2.0.0"],"Dependents":["jsdom@virtual:765dd21400b9887d1cda8410e14996ece3abd2d473a1afb27695f43d295da769ea8bf3ebcf77d15b6687aeeeff789a6f299e6aeede434e237808bef39343fe75#npm:20.0.3"]}}
