chore: trivy ignore CVE-2026-33036

tstephen-nhs · tstephen-nhs · commit 2e415ceb516e · 2026-03-18T09:10:09.000Z
diff --git a/.trivyignore.yaml b/.trivyignore.yaml
@@ -23,3 +23,6 @@ vulnerabilities:
   - id: CVE-2026-2229
     statement: Transitive dependency vulnerability in undici of npm
     expired_at: 2026-06-01
+  - id: CVE-2026-33036
+    statement:  fast-xml-parser vulnerability accepted as risk - dependency of aws-sdk/client-dynamodb and redocly
+    expired_at: 2026-04-01
