security: we should check all the vulnerabilities that can be fixed (#…

…2163)
kubeovn · Dec 14, 2022 · 5e4955c · 5e4955c
1 parent 502a25b
commit 5e4955c
Show file tree

Hide file tree

Showing 2 changed files with 3 additions and 3 deletions.
diff --git a/.trivyignore b/.trivyignore
@@ -1 +1 @@
-CVE-2022-3358
+CVE-2022-29526
diff --git a/Makefile b/Makefile
@@ -504,8 +504,8 @@ lint-windows:
 
 .PHONY: scan
 scan:
-	trivy image --exit-code=1 --severity=HIGH --ignore-unfixed --security-checks vuln $(REGISTRY)/kube-ovn:$(RELEASE_TAG)
-	trivy image --exit-code=1 --severity=HIGH --ignore-unfixed --security-checks vuln $(REGISTRY)/vpc-nat-gateway:$(RELEASE_TAG)
+	trivy image --exit-code=1 --ignore-unfixed --security-checks vuln $(REGISTRY)/kube-ovn:$(RELEASE_TAG)
+	trivy image --exit-code=1 --ignore-unfixed --security-checks vuln $(REGISTRY)/vpc-nat-gateway:$(RELEASE_TAG)
 
 .PHONY: ut
 ut: