Silence `RUSTSEC-2024-0370` in `osv-scanner`

author: Markus Pettersson <markus.pettersson@mullvad.net> 2024-09-06 15:52:01 +0200
committer: Markus Pettersson <markus.pettersson@mullvad.net> 2024-09-06 16:20:44 +0200
commit: a4e236ad8666761fb28e8a787126edbf9a350e2e (patch)
tree: a480195391ad437bce787d732d881f3cb4c7dfbb
parent: f0e121db89057278682ed3c05472df4705162d90 (diff)
download: mullvadvpn-a4e236ad8666761fb28e8a787126edbf9a350e2e.tar.xz
mullvadvpn-a4e236ad8666761fb28e8a787126edbf9a350e2e.zip
1 files changed, 8 insertions, 0 deletions
diff --git a/osv-scanner.toml b/osv-scanner.toml
index 0349695942..02b1479177 100644
--- a/osv-scanner.toml
+++ b/osv-scanner.toml
@@ -50,3 +50,11 @@ KyberSlash is not exploitable in our usage of it:
 https://mullvad.net/en/blog/mullvads-usage-of-kyber-is-not-affected-by-kyberslash
 And no patched version is available.
 """
+
+[[IgnoredVulns]]
+id = "RUSTSEC-2024-0370"
+ignoreUntil = 2024-12-06
+reason = """
+proc-macro-error is unmaintained, but it does not necessarily contain any vulns.
+Will be fixed by bumping `nftnl`.
+"""
author	Markus Pettersson <markus.pettersson@mullvad.net>	2024-09-06 15:52:01 +0200
committer	Markus Pettersson <markus.pettersson@mullvad.net>	2024-09-06 16:20:44 +0200
commit	a4e236ad8666761fb28e8a787126edbf9a350e2e (patch)
tree	a480195391ad437bce787d732d881f3cb4c7dfbb
parent	f0e121db89057278682ed3c05472df4705162d90 (diff)
download	mullvadvpn-a4e236ad8666761fb28e8a787126edbf9a350e2e.tar.xz mullvadvpn-a4e236ad8666761fb28e8a787126edbf9a350e2e.zip