adding allowed vulnerabilities

GregWhiteyBialas · GregWhiteyBialas · commit 870d9365b092 · 2025-07-02T14:15:08.000+02:00
diff --git a/etc/kayobe/pulp.yml b/etc/kayobe/pulp.yml
@@ -242,7 +242,7 @@ stackhpc_pulp_distribution_deb_production: >-
 
 # Whether to sync Rocky Linux 9 packages.
 stackhpc_pulp_sync_rocky_9: "{{ os_distribution == 'rocky' }}"
-# Rocky 9 minor version number. Supported values: 1, 2, 3, 4, 5, 6. Default is 6
+# Rocky 9 minor version number. Supported values: 1, 2, 3, 4, 5, ń6. Default is 6
 stackhpc_pulp_repo_rocky_9_minor_version: 6
 # Rocky 9 Snapshot versions. The defaults use the appropriate version from
 # pulp-repo-versions.yml for the selected minor release.
diff --git a/etc/kayobe/trivy/allowed-vulnerabilities.yml b/etc/kayobe/trivy/allowed-vulnerabilities.yml
@@ -18,6 +18,25 @@ grafana_allowed_vulnerabilities:
   - CVE-2024-8986
 skyline_apiserver_allowed_vulnerabilities:
   - CVE-2024-33663
+prometheus_blackbox_exporter_allowed_vulnerabilities:
+  - CVE-2024-45337
+prometheus_memcached_exporter_allowed_vulnerabilities:
+  - CVE-2024-45337
+prometheus_mysqld_exporter_allowed_vulnerabilities:
+  - CVE-2024-45337
+prometheus_elasticsearch_exporter_allowed_vulnerabilities:
+  - CVE-2024-45337
+prometheus_node_exporter_allowed_vulnerabilities:
+  - CVE-2024-45337
+prometheus_openstack_exporter_allowed_vulnerabilities:
+  - CVE-2024-45337
+prometheus_libvirt_exporter_allowed_vulnerabilities:
+  - CVE-2024-45337
+prometheus_cadvisor_allowed_vulnerabilities:
+  - CVE-2024-41110
+  - CVE-2024-45337
+influxdb_allowed_vulnerabilities:
+  - CVE-2024-45337
 
 ###############################################################################
 # Dummy variable to allow Ansible to accept this file.
