Skip to content

chore: remove CVE-2024-21538 override from Trivy ignore list#3882

Open
Onyx2406 wants to merge 1 commit intointerledger:mainfrom
Onyx2406:chore/remove-cve-2024-21538-override
Open

chore: remove CVE-2024-21538 override from Trivy ignore list#3882
Onyx2406 wants to merge 1 commit intointerledger:mainfrom
Onyx2406:chore/remove-cve-2024-21538-override

Conversation

@Onyx2406
Copy link
Copy Markdown

@Onyx2406 Onyx2406 commented Apr 3, 2026

Summary

Removes the CVE-2024-21538 (cross-spawn vulnerability) override from .trivyignore.

The project now uses Node v24 (per .nvmrc), which ships with npm >= 10.9.1 where this vulnerability is resolved. The .grype.yaml file already had this CVE removed in a prior update.

Changes

File Change
.trivyignore Remove CVE-2024-21538 exp:2026-03-01 line

Closes #3160

@Onyx2406
chore: remove CVE-2024-21538 override from Trivy ignore list
633fb94 
The project now uses Node v24 which ships with npm >= 10.9.1,
resolving the cross-spawn vulnerability (CVE-2024-21538). The
Trivy scan override is no longer needed.

The .grype.yaml file already had this CVE removed in a prior
update.

Closes interledger#3160
@netlify
Copy link
Copy Markdown

netlify bot commented Apr 3, 2026
edited
Loading

Deploy Preview for brilliant-pasca-3e80ec failed. Why did it fail? →

Name Link
🔨 Latest commit 633fb94
🔍 Latest deploy log https://app.netlify.com/projects/brilliant-pasca-3e80ec/deploys/69cf6ab0d107690008352793

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Remove vulnerability scan overrides for CVE-2024-21538

1 participant

@Onyx2406