diff --git a/.github/workflows/ci.py b/.github/workflows/ci.py index 1fd8b7789..91ec918be 100644 --- a/.github/workflows/ci.py +++ b/.github/workflows/ci.py @@ -221,6 +221,7 @@ IGNORED_DEPENDENCY_CVES = [ 'CVE-2025-8194', # DoS in tarfile 'CVE-2025-6069', # DoS in HTMLParser 'CVE-2025-13836', # DoS in http client reading from malicious server + 'CVE-2025-12084', # DoS in xml.dom.minidom unused in kitty # glib 'CVE-2025-4056', # Only affects Windows, on which we dont run # github.com/nwaples/rardecode/v2