ignore consul and jwt CVEs

skudasov · skudasov · commit 4a77370d0ace · 2024-11-08T16:17:18.000+01:00
diff --git a/.nancy-ignore b/.nancy-ignore
@@ -11,3 +11,5 @@ CVE-2023-48795 # Improper Validation of Integrity Check Value x/crypto, which is
 CVE-2024-24786 # CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop') in indirect dependency
 CVE-2024-32972 # CWE-400: Uncontrolled Resource Consumption ('Resource Exhaustion') [still not fixed, not even in v1.13.8]
 CVE-2023-42319 # CWE-noinfo: lol... go-ethereum v1.13.8 again
+CVE-2024-10086 # Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
+CVE-2024-51744 # CWE-755: Improper Handling of Exceptional Conditions
