Tests failing when adding expiry to CVE.

IBM / audit-ci

Audit NPM, Yarn, PNPM, and Bun dependencies in continuous integration environments, preventing integration if vulnerabilities are found at or above a configurable threshold while ignoring allowlisted advisories

Apache License 2.0

264 stars 42 forks source link

Tests failing when adding expiry to CVE. #343

Open becker-finstreet opened 2 months ago

becker-finstreet commented 2 months ago

{ "allowlist": [ { "GHSA-rp65-9cf3-cjxr": { "expiry": "2025-02-01T09:00:00Z" } }, { "GHSA-3h5v-q93c-6h6q": { "expiry": "2025-02-01T09:00:00Z" } }, { "GHSA-grv7-fg5c-xmjg": { "expiry": "2025-02-01T09:00:00Z" } } ], "high": true }

This config fails, and returns matches for all the CVE's whitelisted, what is wrong with this config?