From 0caf864627b6082207080a87232b151142495042 Mon Sep 17 00:00:00 2001
From: Michael Chouinard <46358556+chouinar@users.noreply.github.com>
Date: Fri, 17 Nov 2023 12:10:00 -0500
Subject: [PATCH] Add vulnerabilities to ignore file (#690)

Add vulnerabilities to ignore file
---
 .grype.yml   | 10 ++++++++--
 .trivyignore |  8 +++++++-
 2 files changed, 15 insertions(+), 3 deletions(-)

diff --git a/.grype.yml b/.grype.yml
index 2d6dceef1..a6c539b00 100644
--- a/.grype.yml
+++ b/.grype.yml
@@ -19,6 +19,12 @@ ignore:
   # https://github.com/anchore/grype/issues/1172
   - vulnerability: GHSA-xqr8-7jwr-rhp7
   - vulnerability: GHSA-7fh5-64p2-3v2j
-    # pip vulnerability, need to wait for the Python image to update to 23.x
-    # https://github.com/docker-library/python/blob/402b993af9ca7a5ee22d8ecccaa6197bfb957bc5/3.12/slim-bookworm/Dockerfile#L137
+  # pip vulnerability, need to wait for the Python image to update to 23.x
+  # https://github.com/docker-library/python/blob/402b993af9ca7a5ee22d8ecccaa6197bfb957bc5/3.12/slim-bookworm/Dockerfile#L137
   - vulnerability: GHSA-mq26-g339-26xf
+  # 11/14/2023 - Postgres vulnerabilities in the Debian image
+  - vulnerability: CVE-2023-39417
+  - vulnerability: CVE-2023-5869
+  - vulnerability: CVE-2023-39418
+  - vulnerability: CVE-2023-5868
+  - vulnerability: CVE-2023-5870
diff --git a/.trivyignore b/.trivyignore
index 797f80c5d..1fa436529 100644
--- a/.trivyignore
+++ b/.trivyignore
@@ -7,4 +7,10 @@
 #  Issue:         Why there is a finding and why this is here or not been removed
 #  Last checked:  Date last checked in scans
 #The-CVE-or-vuln-id # Remove comment at start of line
-CVE-2023-5363
\ No newline at end of file
+CVE-2023-5363
+# 11/14/2023 - Postgres vulnerabilities in the Debian image
+CVE-2023-39417
+CVE-2023-5869
+CVE-2023-39418
+CVE-2023-5868
+CVE-2023-5870
\ No newline at end of file