Update osv-scanner.toml to ignore GHSA-8jmw-wjr8-2x66

qgis · Jan 9, 2024 · a912b82 · a912b82
1 parent 214f8aa
commit a912b82
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/resources/server/src/landingpage/osv-scanner.toml b/resources/server/src/landingpage/osv-scanner.toml
@@ -17,3 +17,7 @@ reason = "...the built application is meant to be run on the client and not on t
 [[IgnoredVulns]]
 id = "GHSA-776f-qx25-q3cc"
 reason = "...the built application is meant to be run on the client and not on the server... Look to https://github.com/qgis/QGIS/pull/55748#discussion_r1440141394"
+
+[[IgnoredVulns]]
+id = "GHSA-8jmw-wjr8-2x66"
+reason = "The implementation of git-clone is part of the vue/cli@^5.0.8 is ran by the client and is not ran on the server and the input for this function is static. Look to https://github.com/jaz303/git-clone/commit/fd330459593aef7c7a8c54d786e3c4d5722749f9?diff=unified&w=0"