From 87effb6e26bfe8aed73b325eae1f8a4ca4aa513b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Robin=20L=C3=B6sch?= <rl@maltego.com>
Date: Thu, 21 Dec 2023 09:28:56 +0100
Subject: [PATCH] add jake whitelist to ignore CVE-2018-20225

---
 .github/workflows/sonatype-jack.yml | 2 +-
 jake-whitelist.json                 | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)
 create mode 100644 jake-whitelist.json

diff --git a/.github/workflows/sonatype-jack.yml b/.github/workflows/sonatype-jack.yml
index 26a73e3..34e0ec0 100644
--- a/.github/workflows/sonatype-jack.yml
+++ b/.github/workflows/sonatype-jack.yml
@@ -27,4 +27,4 @@ jobs:
           pip3 freeze > frozen.requirements.txt
           
           pip3 install jake
-          jake ddt
\ No newline at end of file
+          jake ddt --whitelist jake-whitelist.json
diff --git a/jake-whitelist.json b/jake-whitelist.json
new file mode 100644
index 0000000..6f50422
--- /dev/null
+++ b/jake-whitelist.json
@@ -0,0 +1 @@
+{"ignore": [{"id": "CVE-2018-20225", "reason": "Only valid if private indexes are used"}]}
\ No newline at end of file