-
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.trivyignore
More file actions
16 lines (12 loc) · 583 Bytes
/
.trivyignore
File metadata and controls
16 lines (12 loc) · 583 Bytes
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
# SPDX-License-Identifier: MIT AND Palimpsest-0.6
# SPDX-FileCopyrightText: 2024-2025 ECHIDNA Project Contributors
#
# Trivy ignore file for ECHIDNA
# List vulnerability IDs to ignore during scanning
# Example: Ignore specific CVE with justification
# CVE-2023-XXXXX # False positive - not applicable to our use case
# Development dependencies (not in production)
# CVE-2024-XXXXX # Only affects dev tools, not runtime
# Accepted risks (document why)
# CVE-2024-YYYYY # Risk accepted - mitigated by other controls
# Add ignored vulnerabilities below with clear justification: