Ignore some safety alerts

* 66700 (CVE-2024-0690) - we only use `no_log` in tor-hidden-services where it is not in a loop * 66777 (CVE-2023-6237) - not affected, as we build against system OpenSSL * 66704 (CVE-2024-26130) - we should not be checking PKCS#12 keys/certs * 66710 (CVE-2023-29483) - dev only, DoS isn't an issue
freedomofpress · Apr 30, 2024 · 2a2de15 · 2a2de15
1 parent 7acb7fc
commit 2a2de15
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/Makefile b/Makefile
@@ -180,6 +180,10 @@ safety:  ## Run `safety check` to check python dependencies for vulnerabilities.
 		--ignore 65193 \
 		--ignore 65510 \
 		--ignore 65511 \
+		--ignore 66700 \
+		--ignore 66777 \
+		--ignore 66704 \
+		--ignore 66710 \
 		--full-report -r $$req_file \
 		&& echo -e '\n' \
 		|| exit 1; \