Extend expiration dates for specific vulnerabilities

wangzlei · web-flow · commit 3bce1a44e806 · 2026-04-14T14:12:39.000-07:00
Updated expiration dates for CVE-2026-33870 and CVE-2026-33871.
diff --git a/.github/trivy/daily-scan.trivyignore.yaml b/.github/trivy/daily-scan.trivyignore.yaml
@@ -13,7 +13,7 @@
 vulnerabilities:
   - id: CVE-2026-33870
     statement: "Netty HTTP/1.1 Request Smuggling. Fix: bump netty-bom to 4.1.132.Final. https://github.com/aws-observability/aws-otel-java-instrumentation/issues/1346"
-    expired_at: 2026-04-14
+    expired_at: 2026-04-28
   - id: CVE-2026-33871
     statement: "Netty HTTP/2 CONTINUATION frame flood DoS. Fix: bump netty-bom to 4.1.132.Final. https://github.com/aws-observability/aws-otel-java-instrumentation/issues/1346"
-    expired_at: 2026-04-14
+    expired_at: 2026-04-28
