forked from StarRocks/starrocks
-
Notifications
You must be signed in to change notification settings - Fork 0
/
trivy.yaml
22 lines (22 loc) · 643 Bytes
/
trivy.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
severity:
- HIGH
- CRITICAL
scan:
skip-dirs:
# ignore broker's cve
- apache_hdfs_broker/
skip-files:
# hudi required
- "**/htrace-core4-4.2.0-incubating.jar"
- "**/hbase-protocol-shaded-2.4.13.jar"
- "**/hbase-shaded-netty-4.1.1.jar"
# kudu required, already latest
- "**/kudu-client-1.17.0.jar"
# hadoop-common 3.4.0 introduced, already latest
- "**/dnsjava-3.4.0.jar"
- "**/hadoop-client-runtime-3.4.0.jar"
- "**/commons-compress-1.24.0.jar"
# paimon required, already latest
- "**/paimon-bundle-0.8.2.jar"
# apache ranger required
- "**/jackson-mapper-asl-1.9.13.jar"