forked from openshift/hive
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy path.snyk
More file actions
18 lines (18 loc) · 1.38 KB
/
Copy path.snyk
File metadata and controls
18 lines (18 loc) · 1.38 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
# References:
# https://docs.snyk.io/scan-applications/snyk-code/using-snyk-code-from-the-cli/excluding-directories-and-files-from-the-snyk-code-cli-test
# https://docs.snyk.io/snyk-cli/commands/ignore
exclude:
global:
- vendor/**
- apis/vendor/**
- "**/*_test.go"
ignore:
'SNYK-GOLANG-K8SIOCLIENTGOUTILJSONPATH-7540854':
- '* > k8s.io/client-go/util/jsonpath':
reason: 'Snyk mistakenly identifies v1.20.0-alpha.1 as newer than v0.29.7. client-go has a complicated history of versioning. Presumably, v1.20.0-alpha.1 referred to kubernetes-v1.20. kubernetes tags have since been prefaced by "kubernetes", whereas actual client-go versions resumed numbering from 0.x'
'SNYK-GOLANG-K8SIOCLIENTGOTRANSPORT-7538822':
- '* > k8s.io/client-go/transport':
reason: 'Snyk mistakenly identifies v1.17.0-alpha.1 as newer than v0.29.7. client-go has a complicated history of versioning. Presumably, v1.20.0-alpha.1 referred to kubernetes-v1.20. kubernetes tags have since been prefaced by "kubernetes", whereas actual client-go versions resumed numbering from 0.x'
'SNYK-GOLANG-GITHUBCOMOPENSHIFTINSTALLERDATA-1070553':
- '* > github.com/openshift/installer/data':
reason: 'Snyk incorrectly flags this exposure because the semver of the tag we are referencing in go.mod sorts lower than the semver of the release branch in which the fix appeared several years ago.'