diff options
author | Claire <claire.github-309c@sitedethib.com> | 2024-01-15 11:45:48 +0100 |
---|---|---|
committer | Claire <claire.github-309c@sitedethib.com> | 2024-01-24 15:31:13 +0100 |
commit | 4eb98ef7552835d0b9327c50da2d26b54725b5ae (patch) | |
tree | 80227529582050e79ce705858bbf869c04b51814 | |
parent | 7a22999f925728ab8c51a9e1a262307d73a1c156 (diff) |
Ignore the devise-two-factor advisory as we have rate limits in place (#28733)
-rw-r--r-- | .bundler-audit.yml | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/.bundler-audit.yml b/.bundler-audit.yml new file mode 100644 index 00000000000..0671df390fe --- /dev/null +++ b/.bundler-audit.yml @@ -0,0 +1,6 @@ +--- +ignore: + # devise-two-factor advisory about brute-forcing TOTP + # We have rate-limits on authentication endpoints in place (including second + # factor verification) since Mastodon v3.2.0 + - CVE-2024-0227 |