From a2301cfa836b34a5bbe4f14250bfea1ef4e9acdf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?St=C3=A9phane=20Brunner?= <stephane.brunner@camptocamp.com>
Date: Fri, 30 Sep 2022 16:01:47 +0200
Subject: [PATCH] Ignore CVE

  -> Vulnerability found in mako version 1.0.9
     Vulnerability ID: 50870
     Affected spec: <1.2.2
     ADVISORY: Mako 1.2.2 includes a fix for a REDoS
     vulnerability.https://github.com/sqlalchemy/mako/issues/366
     PVE-2022-50870
     For more information, please visit
     https://pyup.io/vulnerabilities/PVE-2022-50870/50870/

  Title: [1084602] Arbitrary Code Execution in underscore
  Severity: critical
  CWE: CWE-94
  Vulnerable versions: >=1.3.2 <1.12.1
  Patched versions: >=1.12.1
  Recommendation: Upgrade to version 1.12.1 or later
  Version: 1.6.0
  Path: openlayers > nomnom > underscore
  More info: https://github.com/advisories/GHSA-cf4h-3jhx-xvhq
---
 npm-cve-ignore | 2 +-
 pip-cve-ignore | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)
 create mode 100644 pip-cve-ignore

diff --git a/npm-cve-ignore b/npm-cve-ignore
index 0a9c119a51..2ab3e7b963 100644
--- a/npm-cve-ignore
+++ b/npm-cve-ignore
@@ -1 +1 @@
-1004967,1006069,1006094,1006100,1006171,1006724,1006883,1006884
+1004967,1006069,1006094,1006100,1006171,1006724,1006883,1006884,1084602
diff --git a/pip-cve-ignore b/pip-cve-ignore
new file mode 100644
index 0000000000..99d059eb96
--- /dev/null
+++ b/pip-cve-ignore
@@ -0,0 +1 @@
+50870