From 83b6d999f6822c70d8aadedd08694becb4fdbb1b Mon Sep 17 00:00:00 2001
From: sarahalsmiller <100602640+sarahalsmiller@users.noreply.github.com>
Date: Fri, 22 Nov 2024 11:38:19 -0600
Subject: [PATCH] Add alpine image cves to suppress list (#21964)

add alpine image cves to suppress list
---
 .release/security-scan.hcl | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.release/security-scan.hcl b/.release/security-scan.hcl
index 20c105f3b4..f690cbe906 100644
--- a/.release/security-scan.hcl
+++ b/.release/security-scan.hcl
@@ -39,6 +39,11 @@ container {
 			vulnerabilities = [
 				"CVE-2024-8096", # curl@8.9.1-r2,
 				"CVE-2024-9143", # openssl@3.3.2-r0,
+				"CVE-2024-3596", # openssl@3.3.2-r0,
+				"CVE-2024-2236", # openssl@3.3.2-r0,
+				"CVE-2024-26458", # openssl@3.3.2-r0,
+				"CVE-2024-2511", # openssl@3.3.2-r0,
+				#the above can be resolved when they're resolved in the alpine image
 			]
 			paths = [
 				"internal/tools/proto-gen-rpc-glue/e2e/consul/*",