fix: skip govulncheck for now since its not patchable

mrz1836 · mrz1836 · commit 0258ca5ecb07 · 2025-11-20T18:58:26.000-05:00
diff --git a/.github/.env.custom b/.github/.env.custom
@@ -30,3 +30,14 @@ MAGE_X_GO_VERSION=1.25.x
 # Secondary Go Version
 GO_SECONDARY_VERSION=1.25.x
 MAGE_X_GO_SECONDARY_VERSION=1.25.x
+
+# Go vulnerability scanning with Govulncheck (true/false)
+ENABLE_SECURITY_SCAN_GOVULNCHECK=false
+
+# This is in regards to:
+# Vulnerability #1: GO-2024-3218
+#    Content Censorship in the InterPlanetary File System (IPFS) via Kademlia DHT
+#    abuse in github.com/libp2p/go-libp2p-kad-dht
+#  More info: https://pkg.go.dev/vuln/GO-2024-3218
+#  Module: github.com/libp2p/go-libp2p-kad-dht
+#    Found in: github.com/libp2p/go-libp2p-kad-dht@v0.35.1
