From 0135a9997b96f7c2dde06d7e778cbe8ba5825bd7 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Krzysztof=20S=C5=82onka?= <slonka@users.noreply.github.com>
Date: Mon, 23 Oct 2023 09:14:25 +0200
Subject: [PATCH] ci(security): filter out kuma from security update (#8098)

Signed-off-by: slonka <slonka@users.noreply.github.com>
---
 tools/ci/update-vulnerable-dependencies.sh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/tools/ci/update-vulnerable-dependencies.sh b/tools/ci/update-vulnerable-dependencies.sh
index 096263261ba6..899fad1d49e7 100755
--- a/tools/ci/update-vulnerable-dependencies.sh
+++ b/tools/ci/update-vulnerable-dependencies.sh
@@ -9,7 +9,7 @@ for dep in $(osv-scanner --lockfile=go.mod --json | jq -c '.results[].packages[]
   name: $vulnerablePackage,
   current: .package.version,
   fixedVersions: [.vulnerabilities[].affected[] | select(.package.name == $vulnerablePackage) | .ranges[].events[] | select(.fixed != null) | .fixed] | unique
-} | select(.fixedVersions | length > 0)'); do
+} | select(.fixedVersions | length > 0) | select(.name != "github.com/kumahq/kuma")'); do
   IFS=. read -r currentMajor currentMinor currentPatch <<< "$(jq -r .current <<< "$dep")"
   # Update to the first version that's greater than our current version
   for version in $(jq -cr .fixedVersions[] <<< "$dep" | sort -V); do # sort supports semver sort