From f54e869a1415f9bcd3eac0fba270857c56300091 Mon Sep 17 00:00:00 2001
From: April-May <18632637+AprilMay0@users.noreply.github.com>
Date: Tue, 28 Apr 2026 08:46:08 -0700
Subject: [PATCH 1/2] fix: Add CVE-2026-41989 to the list of suppressed
 vulnerabilities in security scan

---
 .release/security-scan.hcl | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/.release/security-scan.hcl b/.release/security-scan.hcl
index 94493be6ca..bb5f4c184d 100644
--- a/.release/security-scan.hcl
+++ b/.release/security-scan.hcl
@@ -40,6 +40,11 @@ container {
                 #
                 # There's no base image fix for this yet.
                 "CVE-2026-27171"
+
+				# libgcrypt@1.10.3-r1 https://nvd.nist.gov/vuln/detail/CVE-2026-41989
+				#
+				# There is no fix available in the Alpine Docker image yet.
+				"CVE-2026-41989"
 			]
 		}
 	}

From e9bf6c0b76ea6dfeb9929343c284fdd127a5ac57 Mon Sep 17 00:00:00 2001
From: April-May <18632637+AprilMay0@users.noreply.github.com>
Date: Tue, 28 Apr 2026 08:52:38 -0700
Subject: [PATCH 2/2] remove suppressed vulnerability

---
 .release/security-scan.hcl | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/.release/security-scan.hcl b/.release/security-scan.hcl
index bb5f4c184d..324e131e5d 100644
--- a/.release/security-scan.hcl
+++ b/.release/security-scan.hcl
@@ -36,11 +36,6 @@ container {
 				# Boundary does not utilize ping in iputils.
 				"CVE-2025-48964",
 
-                # zlib@1.3.1-r2 https://nvd.nist.gov/vuln/detail/CVE-2026-27171
-                #
-                # There's no base image fix for this yet.
-                "CVE-2026-27171"
-
 				# libgcrypt@1.10.3-r1 https://nvd.nist.gov/vuln/detail/CVE-2026-41989
 				#
 				# There is no fix available in the Alpine Docker image yet.