chore(security): Add CVE-2026-41989 to the list of suppressed vulnerabilities in security scan (#6657)

3 weeks ago · 654116ba02
parent 43e842c981
commit 654116ba02
1 changed files with 6 additions and 0 deletions
--- a/.release/security-scan.hcl
+++ b/.release/security-scan.hcl
@ -35,6 +35,12 @@ container {
 				#
 				# Boundary does not utilize ping in iputils.
 				"CVE-2025-48964"
+
+				# libgcrypt@1.10.3-r1 https://nvd.nist.gov/vuln/detail/CVE-2026-41989
+				# 
+				# Boundary currently uses this indirectly via the alpine base image for docker. 
+				# Currently there is no base image fix available. 
+				"CVE-2026-41989"
 			]
 		}
 	}