Skip to content

Commit 889cbac

Browse files
remove expired .trivyignore entries (CVE-2026-32776, CVE-2026-32767)
1 parent b839b4a commit 889cbac

1 file changed

Lines changed: 0 additions & 10 deletions

File tree

.trivyignore

Lines changed: 0 additions & 10 deletions
Original file line numberDiff line numberDiff line change
@@ -15,13 +15,3 @@ CVE-2026-33846 exp:2026-11-05
1515
# jackson-core async parser DoS - not exploitable, services only use synchronous ObjectMapper API
1616
# See: UID2-6670
1717
GHSA-72hv-8253-57qq exp:2026-09-01
18-
19-
# libexpat NULL pointer dereference in Alpine base image - not exploitable, our Java services do not use libexpat
20-
# Fixed in libexpat 2.7.5, not yet available in eclipse-temurin Alpine 3.23 base image
21-
# See: UID2-6806
22-
CVE-2026-32776 exp:2026-04-25
23-
24-
# Trivy reports CVE-2026-32776 with transposed digits (32767 instead of 32776) - this is a known Trivy bug
25-
# See: https://github.com/aquasecurity/trivy/discussions/10412 and UID2-6806
26-
# This entry can be removed once Trivy fixes the typo
27-
CVE-2026-32767 exp:2026-04-25

0 commit comments

Comments
 (0)