amcrest2mqtt

Commit Graph

Author	SHA1	Message	Date
Jeff Culverhouse	21925c5688	chore: enhance Trivy security scanning configuration - Add ignore-unfixed: true to Trivy workflow to focus on actionable vulnerabilities - Expand .trivyignore from 1 to 10 CVEs with detailed categorization - Document why each CVE is ignored (system libraries, unused features) - Ignore glibc/libtasn1 system library CVEs pending upstream fixes - Ignore curl CVEs for SSH/OAuth2/LDAP features not used by application - Ignore OpenLDAP CVE as library is not used by amcrest2mqtt This aligns with govee2mqtt security configuration and reduces noise from unfixable or non-applicable security alerts while maintaining focus on CRITICAL and HIGH severity issues that can be addressed. Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>	2 weeks ago
Jeff Culverhouse	8e1cdb313d	chore: minor fixes	3 months ago
Jeff Culverhouse	1d52185673	feature: move things around, cleaner code	3 months ago

Author

SHA1

Message

Date

Jeff Culverhouse

21925c5688

chore: enhance Trivy security scanning configuration

- Add ignore-unfixed: true to Trivy workflow to focus on actionable vulnerabilities
- Expand .trivyignore from 1 to 10 CVEs with detailed categorization
- Document why each CVE is ignored (system libraries, unused features)
- Ignore glibc/libtasn1 system library CVEs pending upstream fixes
- Ignore curl CVEs for SSH/OAuth2/LDAP features not used by application
- Ignore OpenLDAP CVE as library is not used by amcrest2mqtt

This aligns with govee2mqtt security configuration and reduces noise
from unfixable or non-applicable security alerts while maintaining
focus on CRITICAL and HIGH severity issues that can be addressed.

Co-Authored-By: Claude Sonnet 4.5 <noreply@anthropic.com>

Jeff Culverhouse

8e1cdb313d

chore: minor fixes

Jeff Culverhouse

1d52185673

feature: move things around, cleaner code

3 Commits (d586b89fdad9901c5e515aaccf8c2871ab517a13)