# Trivy ignore file for wick-formatter container
# Only CVEs with no upstream fix AND not exploitable in our use case
# (non-interactive stdio MCP server, no terminal UI, no systemd)

# ncurses buffer overflow - no upstream fix, we don't use terminal/curses
CVE-2025-69720

# systemd IPC code execution - no upstream fix, container doesn't use systemd
CVE-2026-29111
