From 8522652c56ec421e4e08becff999477a7c8807de Mon Sep 17 00:00:00 2001
From: Mark Collao <106274486+mcollao-hc@users.noreply.github.com>
Date: Fri, 21 Feb 2025 12:59:24 -0600
Subject: [PATCH] VAULT-33401 - update security-scan.hcl (#29230)

* update security-scan.hcl

* Update .release/security-scan.hcl

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>

---------

Co-authored-by: Theron Voran <tvoran@users.noreply.github.com>
---
 .release/security-scan.hcl | 13 ++++++++++++-
 1 file changed, 12 insertions(+), 1 deletion(-)

diff --git a/.release/security-scan.hcl b/.release/security-scan.hcl
index 3917c269cd..9b8f2f61d5 100644
--- a/.release/security-scan.hcl
+++ b/.release/security-scan.hcl
@@ -9,8 +9,19 @@ container {
 
 binary {
 	secrets      = false
-	go_modules   = false
+	go_modules   = true
+	go_stdlib    = true
 	osv          = true
 	oss_index    = true
 	nvd          = false
+
+	# Triage items that are _safe_ to ignore here. Note that this list should be
+	# periodically cleaned up to remove items that are no longer found by the scanner.
+	triage {
+		suppress {
+			vulnerabilities = [
+				"GO-2022-0635", // github.com/aws/aws-sdk-go@v1.55.5
+			]
+		}
+	}
 }