diff --git a/.snyk b/.snyk new file mode 100644 index 0000000..97c7ce6 --- /dev/null +++ b/.snyk @@ -0,0 +1,49 @@ +# Snyk (https://snyk.io) policy file, patches or ignores known vulnerabilities. +version: v1.25.0 +# Nearly all CVE's are remediated by virtue of the runtime context, e.g., on an ephemeral circleci executor. +ignore: + SNYK-GOLANG-GOLANGORGXNETHTTP2-6531285: + - "*": + reason: Allocation of Resources Without Limits or Throttling + expires: 2024-06-01T14:26:34.404Z + SNYK-GOLANG-GOPKGINYAMLV3-2841557: + - "*": + reason: Denial of Service (DoS) + expires: 2024-06-01T14:26:34.404Z + SNYK-GOLANG-GOPKGINYAMLV3-2952714: + - "*": + reason: NULL Pointer Dereference + expires: 2024-06-01T14:26:34.404Z + SNYK-GOLANG-GOOGLEGOLANGORGGRPC-5953328: + - "*": + reason: Denial of Service (DoS) + expires: 2024-06-01T14:26:34.404Z + SNYK-GOLANG-GOLANGORGXNETHTTP2HPACK-3358253: + - "*": + reason: Denial of Service (DoS) + expires: 2024-06-01T14:26:34.404Z + SNYK-GOLANG-GOLANGORGXNETHTTP2-2313688: + - "*": + reason: Denial of Service (DoS) + expires: 2024-06-01T14:26:34.404Z + SNYK-GOLANG-GOLANGORGXNETHTTP2-3028257: + - "*": + reason: Denial of Service + expires: 2024-06-01T14:26:34.404Z + SNYK-GOLANG-GOLANGORGXNETHTTP2-3323837: + - "*": + reason: Denial of Service (DoS) + expires: 2024-06-01T14:26:34.404Z + SNYK-GOLANG-GOLANGORGXNETHTTP2-5953327: + - "*": + reason: Denial of Service (DoS) + expires: 2024-06-01T14:26:34.404Z + SNYK-GOLANG-GOLANGORGXCRYPTOSSH-3026972: + - "*": + reason: Denial of Service (DoS) + expires: 2024-06-01T14:26:34.404Z + SNYK-DEBIANUNSTABLE-LIBXML2-6227806: + - "*": + reason: Use after free + expires: 2024-06-01T14:26:34.404Z +patch: {} \ No newline at end of file