From ba746ea69453f9a8b1957069d1f8cad80a48e47f Mon Sep 17 00:00:00 2001
From: David Emerson <43939939+emersodb@users.noreply.github.com>
Date: Thu, 9 Jan 2025 08:57:33 -0500
Subject: [PATCH] Ignoring a vulnerability without a fix yet

---
 .github/workflows/static_code_checks.yaml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/static_code_checks.yaml b/.github/workflows/static_code_checks.yaml
index 595a4cc19..c47e1234d 100644
--- a/.github/workflows/static_code_checks.yaml
+++ b/.github/workflows/static_code_checks.yaml
@@ -43,7 +43,9 @@ jobs:
           virtual-environment: .venv/
           # Ignoring vulnerability in cryptography
           # Fix is 43.0.1 but flwr 1.9 depends on < 43
+          # GHSA-cjgq-5qmw-rcj6 is a Keras vulnerability that has no fix yet
           ignore-vulns: |
             GHSA-h4gh-qq45-vh27
             GHSA-q34m-jh98-gwm2
             GHSA-f9vj-2wh5-fj8j
+            GHSA-cjgq-5qmw-rcj6