chore(security): add CVE-2026-24051 to .trivyignore for Go binaries

miragecentury · miragecentury · commit f6f771d689bf · 2026-03-01T18:55:03.000+01:00
Made-with: Cursor
diff --git a/.trivyignore b/.trivyignore
@@ -34,6 +34,7 @@ CVE-2025-61730 exp:2026-08-19
 #
 # Go binaries we install (dive, argo, kargo, pack, yq); upgrade versions to clear
 CVE-2023-45288 exp:2026-08-19
+CVE-2026-24051 exp:2026-08-19
 CVE-2024-24790 exp:2026-08-19
 CVE-2024-34156 exp:2026-08-19
 CVE-2024-41110 exp:2026-08-19
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -4,6 +4,10 @@
 
 * **ci:** scheduled workflow to update GitHub Actions runner version daily (push to main, no human intervention; requires `REPO_PAT` secret)
 
+### Changed
+
+* **security:** add CVE-2026-24051 to .trivyignore (OpenTelemetry SDK in containerd, trivy, argo)
+
 ### Fixed
 
 * **container:** bootstrap pip with --break-system-packages for PEP 668 (externally-managed-environment)

Original file line number	Diff line number	Diff line change
`@@ -34,6 +34,7 @@ CVE-2025-61730 exp:2026-08-19`
`34`	`34`	`#`
`35`	`35`	`# Go binaries we install (dive, argo, kargo, pack, yq); upgrade versions to clear`
`36`	`36`	`CVE-2023-45288 exp:2026-08-19`
	`37`	`+CVE-2026-24051 exp:2026-08-19`
`37`	`38`	`CVE-2024-24790 exp:2026-08-19`
`38`	`39`	`CVE-2024-34156 exp:2026-08-19`
`39`	`40`	`CVE-2024-41110 exp:2026-08-19`