fix: update grype configuration (#1777)

## Description CVE-2025-0395 flagged in our upstream container images an causes CI to fail. While we wait on a fix, we've opted to ignore this finding so that CI pipelines are unblocked. We'll remove this suppression within 60 days (see #1778). End to End Test:  (See [Pepr Excellent Examples](https://github.com/defenseunicorns/pepr-excellent-examples)) ## Related Issue hotfix ## Type of change - [ ] Bug fix (non-breaking change which fixes an issue) - [ ] New feature (non-breaking change which adds functionality) - [x] Other (security config, docs update, etc) ## Checklist before merging - [x] Unit, [Journey](https://github.com/defenseunicorns/pepr/tree/main/journey), [E2E Tests](https://github.com/defenseunicorns/pepr-excellent-examples), [docs](https://github.com/defenseunicorns/pepr/tree/main/docs), [adr](https://github.com/defenseunicorns/pepr/tree/main/adr) added or updated as needed - [x] [Contributor Guide Steps](https://docs.pepr.dev/main/contribute/#submitting-a-pull-request) followed
defenseunicorns · Feb 7, 2025 · 7a787b9 · 7a787b9
1 parent 47c827e
commit 7a787b9
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/.github/workflows/container-scan.yaml b/.github/workflows/container-scan.yaml
@@ -38,7 +38,7 @@ jobs:
         run: |
           mkdir -p ~/.grype
           echo "ignore:" > ~/.grype.yaml
-          echo "  - vulnerability: GHSA-3xgq-45jj-v275" >> ~/.grype.yaml
+          echo "  - vulnerability: CVE-2025-0395" >> ~/.grype.yaml
       - name: Vulnerability Scan
         uses: anchore/scan-action@7c05671ae9be166aeb155bad2d7df9121823df32 # v6.1.0
         with: