From 2d6988895099ecc7878441156c7077c67a58c48b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Thomas=20M=C3=BCller?=
 <1005065+DeepDiver1975@users.noreply.github.com>
Date: Fri, 8 May 2026 12:28:29 +0200
Subject: [PATCH] chore: suppress CVE-2026-27135 until nginx:alpine is rebuilt
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

nghttp2-libs < 1.68.1 in the current nginx:alpine image; upstream has
not yet published a rebuilt image with the fix.

Signed-off-by: Thomas Müller <1005065+DeepDiver1975@users.noreply.github.com>
---
 .trivyignore | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/.trivyignore b/.trivyignore
index e69de29..0fca280 100644
--- a/.trivyignore
+++ b/.trivyignore
@@ -0,0 +1,3 @@
+# https://github.com/owncloud-docker/web/issues/1
+# Upstream nginx:alpine image not yet rebuilt with fix; remove once nginx:alpine ships nghttp2-libs >= 1.68.1
+CVE-2026-27135