[UID2-6670] Suppress GHSA-72hv-8253-57qq: jackson-core async parser not used

sunnywu · sunnywu · commit 530fa167032c · 2026-03-02T11:38:14.000+11:00
diff --git a/.trivyignore b/.trivyignore
@@ -5,3 +5,7 @@
 # gnutls DoS vulnerability via crafted ClientHello - not impactful as gnutls is not used by our Java service
 # See: UID2-6655
 CVE-2026-1584 exp:2026-08-27
+
+# jackson-core async parser DoS - not exploitable, services only use synchronous ObjectMapper API
+# See: UID2-6670
+GHSA-72hv-8253-57qq exp:2026-09-01
