We want to allow ignoring vulnerabilities by CVE id in the config.
What has been done
Ignore vulnerabilities identifier validation now additionally allows identifiers following the CVE id pattern.
Validation
PR check list
[ ] As much as possible, the changes include tests (unit and/or functional)
[ ] If the changes affect the end user (new feature, behavior change, bug fix) then the PR has a changelog entry (see doc/dev/getting-started.md). If the changes do not affect the end user, then the skip-changelog label has been added to the PR.
Context
We want to allow ignoring vulnerabilities by CVE id in the config.
What has been done
Ignore vulnerabilities identifier validation now additionally allows identifiers following the CVE id pattern.
Validation
PR check list
skip-changeloglabel has been added to the PR.