summaryrefslogtreecommitdiffhomepage
path: root/desktop/osv-scanner.toml
diff options
context:
space:
mode:
Diffstat (limited to 'desktop/osv-scanner.toml')
-rw-r--r--desktop/osv-scanner.toml2
1 files changed, 1 insertions, 1 deletions
diff --git a/desktop/osv-scanner.toml b/desktop/osv-scanner.toml
index 756c8cd5c1..bb7219294c 100644
--- a/desktop/osv-scanner.toml
+++ b/desktop/osv-scanner.toml
@@ -3,7 +3,7 @@
# node-gettext: Prototype Pullution via the addTranslations function
[[IgnoredVulns]]
id = "CVE-2024-21528" # GHSA-g974-hxvm-x689
-ignoreUntil = 2026-04-16 # The vulnerability is ignored for 6 months as the affected library is not receiving updates and we can not patch the vulnerability without migrating to another library, which is no minor feat.
+ignoreUntil = 2026-08-16 # The vulnerability is ignored for 4 months as no patch for the affected library exists and we can not address the vulnerability without migrating to another library, which is no minor feat.
reason = "There is no fix yet and we don't send untrusted input to the first argument of addTranslations"
# ajv: ajv has ReDoS when using $data option
Copyright © 2025 - 2026 Wayne Cole. WTFPL. Attribution appreciated. No warranty. Not liable for bodily damages.