UID2-7008: Suppress CVE-2026-33845 in .trivyignore — gnutls not used by our service (#2516)

sophia-chen-ttd · web-flow · commit beb9aceed43c · 2026-05-04T14:08:58.000+10:00
diff --git a/.trivyignore b/.trivyignore
@@ -11,6 +11,9 @@ CVE-2025-68973 exp:2026-06-15
 # gnutls DoS vulnerability via crafted ClientHello - not impactful as gnutls is not used by our Java service
 # See: UID2-6655
 CVE-2026-1584 exp:2026-08-27
+# gnutls DoS vulnerability via DTLS zero-length record - not impactful as gnutls is not used by our Java service
+# See: UID2-7008
+CVE-2026-33845 exp:2026-11-04
 
 # jackson-core async parser DoS - not exploitable, services only use synchronous ObjectMapper API
 # See: UID2-6670
