From 89d4f70a79268b57430303293659f6fe7ff8fe20 Mon Sep 17 00:00:00 2001
From: nitin-sachdev-29 <nitin.sachdev@hashicorp.com>
Date: Thu, 9 Jan 2025 01:14:34 +0530
Subject: [PATCH] suppressing vulnerability GO-2022-0635 for release (#4453)

* updated consul-dataplane version to 1.6.2, executed go mod tidy and added CHANGELOG.md

* updated golang.org/x/net dependency to 0.34.0 to fix vulnerability https://pkg.go.dev/vuln/GO-2024-3333

* updated golang.org/x/net dependency to 0.34.0 to fix vulnerability https://pkg.go.dev/vuln/GO-2024-3333 in CNI, acceptance and control-plane submodule.

* added CHANGELOG.md

* suppressing vulnerability GO-2022-0635 for release
---
 .release/security-scan.hcl | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.release/security-scan.hcl b/.release/security-scan.hcl
index 5ae5e513d2..aa1994ca7c 100644
--- a/.release/security-scan.hcl
+++ b/.release/security-scan.hcl
@@ -40,7 +40,8 @@ binary {
         "GHSA-r53h-jv2g-vpx6", 
         "CVE-2024-26147", # alias
         "GHSA-jw44-4f3j-q396", # Tracked in NET-8174
-        "CVE-2019-25210" # alias
+        "CVE-2019-25210", # alias
+        "GO-2022-0635"
       ]
     }
   }