fix: grype false positive on 1.26.2

11notes · 11notes · commit 1c0dcc4ed606 · 2026-05-04T14:34:03.000+02:00
diff --git a/.github/workflows/org.container.yml b/.github/workflows/org.container.yml
@@ -3,6 +3,10 @@ run-name: ${{ inputs.run-name }}
 
 env:
   FORCE_JAVASCRIPT_ACTIONS_TO_NODE24: true
+  GRYPE_MATCH_GOLANG_USING_CPES: true
+  GRYPE_MATCH_DOTNET_USING_CPES: true
+  GRYPE_MATCH_JAVASCRIPT_USING_CPES: true
+  GRYPE_MATCH_PYTHON_USING_CPES: toUpperCaseGRYPE_MATCH_RUST_USING_CPES: true
 
 on:
   workflow_dispatch:
diff --git a/.grype.yml b/.grype.yml
@@ -0,0 +1,3 @@
+ignore:
+  - vulnerability: CVE-2026-27143
+    reason: "false positiv on 1.26.2"
diff --git a/build/entrypoint/go.mod b/build/entrypoint/go.mod
@@ -1,4 +1,4 @@
-go 1.26
+go 1.26.2
 module github.com/11notes/docker-adguard/entrypoint
 require (
   github.com/11notes/go-eleven v0.4.1

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,4 @@`
`1`		`-go 1.26`
	`1`	`+go 1.26.2`
`2`	`2`	`module github.com/11notes/docker-adguard/entrypoint`
`3`	`3`	`require (`
`4`	`4`	`github.com/11notes/go-eleven v0.4.1`