HOTFIX - Ignore dependency vulnerability Gunicorn 22.0.0 (#1932)

department-of-veterans-affairs · Aug 13, 2024 · aa97700 · aa97700
1 parent ecbbe09
commit aa97700
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/Makefile b/Makefile
@@ -33,8 +33,9 @@ install-safety:
 check-dependencies: install-safety ## Scan dependencies for security vulnerabilities
 	# 12 Dec 2023: 51668 is fixed with >= 2.0.0b1 of SQLAlchemy. Ongoing refactor to upgrade.
 	# 6 June 2024: 70612 vulnerability found with jinja2 version 3.1.3
+	# 14 Aug 2024: 71600 found in gunicorn version 22.0.0, will be addressed in regular dependencies update
 
-	safety check -r poetry.lock --full-report -i 51668,70612
+	safety check -r poetry.lock --full-report -i 51668,70612,71600
 
 .PHONY:
 	help \