fix: filter() don't ignore when expiry invalid

snyk / policy

Snyk policy parser and matching logic

Other

8 stars 8 forks source link

fix: filter() don't ignore when expiry invalid #203

Closed agatakrajewska closed 3 months ago

agatakrajewska commented 3 months ago

[x] Ready for review
[x] Follows CONTRIBUTING rules
[ ] Reviewed by Snyk internal team

What does this PR do?

At the moment when we pass the ignore rule set to the filter() function with an invalid expiry date, the vulnerability will be marked and returned as ignored. This can cause a security risk, as the vulnerability will keep being ignored past the expiry date the user provided.

https://snyksec.atlassian.net/browse/IGNR-334

team-narwhal-user commented 3 months ago

:tada: This PR is included in version 4.1.1 :tada:

The release is available on:

npm package (@latest dist-tag)
GitHub release

Your semantic-release bot :package::rocket: