From 691bf66ac08a8f4318c3a8bae545fd49208a2deb Mon Sep 17 00:00:00 2001
From: Matt Dragon <mattdragon@navapbc.com>
Date: Tue, 26 Nov 2024 08:10:29 -0500
Subject: [PATCH] [Issue #3015] Ignore false positive CVEs (#3016)

## Summary
Fixes #3015

### Time to review: __1 mins__

## Changes proposed
We're running a newer than "fixed" version for these CVEs and we believe
they're hitting on a false positive so we're ignoring them.
---
 .grype.yml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/.grype.yml b/.grype.yml
index 5f44af0d0..63f1f095d 100644
--- a/.grype.yml
+++ b/.grype.yml
@@ -23,3 +23,9 @@ ignore:
   - vulnerability: CVE-2024-34158
   - vulnerability: CVE-2024-34156
   - vulnerability: CVE-2024-34155
+
+  # https://github.com/HHS/simpler-grants-gov/issues/3015
+  - vulnerability: CVE-2024-10979
+  - vulnerability: CVE-2024-10978
+  - vulnerability: CVE-2024-10976
+  - vulnerability: CVE-2024-10977