fix(fai): ignore CVE-2025-60876 for fai-reindexing container (no upstream fix) (#6178)

Co-authored-by: github-actions[bot] <41898282+github-actions[bot]@users.noreply.github.com>
Co-authored-by: Devin AI <158243242+devin-ai-integration[bot]@users.noreply.github.com>
Co-authored-by: David Konigsberg <72822263+davidkonigsberg@users.noreply.github.com>

Author: 3 people

.github/workflows/dependabot-alerts-to-prs.yml

@@ -607,4 +607,8 @@ jobs:
           container_name: fai-reindexing
           github_token: ${{ secrets.GITHUB_TOKEN }}
           slack_token: ${{ secrets.DEVIN_AI_PR_BOT_SLACK_TOKEN }}
-          ignored_cves: ""
+          # CVE-2025-60876: BusyBox wget HTTP request smuggling vulnerability
+          # No upstream fix available in Alpine Linux (busybox 1.37.0-r30)
+          # Risk accepted: fai-reindexing container does not use wget functionality
+          ignored_cves: |
+            CVE-2025-60876