chore: Suppress minimatch DoS CVE in site Trivy scan

johngrimes · johngrimes · commit ef9356310f82 · 2026-02-24T10:22:07.000+10:00
CVE-2026-26996 is a transitive dependency of serve-handler, only used by the local docusaurus serve command. The production site is deployed as static HTML to GitHub Pages.
diff --git a/site/.trivyignore b/site/.trivyignore
@@ -0,0 +1,3 @@
+# minimatch DoS (serve-handler transitive dependency, only used by local
+# docusaurus serve command, not in production GitHub Pages deployment).
+CVE-2026-26996

Original file line number	Diff line number	Diff line change
`@@ -0,0 +1,3 @@`
	`1`	`+# minimatch DoS (serve-handler transitive dependency, only used by local`
	`2`	`+# docusaurus serve command, not in production GitHub Pages deployment).`
	`3`	`+CVE-2026-26996`