diff --git a/.release/security-scan.hcl b/.release/security-scan.hcl
index d2a8b6bd20..176a2c96fa 100644
--- a/.release/security-scan.hcl
+++ b/.release/security-scan.hcl
@@ -35,6 +35,12 @@ container {
 				#
 				# Boundary does not utilize ping in iputils.
 				"CVE-2025-48964"
+
+				# libgcrypt@1.10.3-r1 https://nvd.nist.gov/vuln/detail/CVE-2026-41989
+				# 
+				# Boundary currently uses this indirectly via the alpine base image for docker. 
+				# Currently there is no base image fix available. 
+				"CVE-2026-41989"
 			]
 		}
 	}