Ignore CVE-2025-68121 for letsencrypt-lego

elelaysh · elelaysh · commit 22dad04041a1 · 2026-02-19T17:19:31.000+01:00
it only talks to known servers
diff --git a/etc/kayobe/trivy/allowed-vulnerabilities.yml b/etc/kayobe/trivy/allowed-vulnerabilities.yml
@@ -19,6 +19,8 @@ grafana_allowed_vulnerabilities:
 influxdb_allowed_vulnerabilities:
   - CVE-2024-45337
   - CVE-2025-68121
+letsencrypt_lego_allowed_vulnerabilities:
+  - CVE-2025-68121
 magnum_conductor_allowed_vulnerabilities:
   - CVE-2024-45337
 opensearch_dashboards_allowed_vulnerabilities:
