From 1e8168cb819e570005148f354e70cfc8a5b0b982 Mon Sep 17 00:00:00 2001
From: Angad Sethi <angad.sethi@atlan.com>
Date: Fri, 17 Apr 2026 17:06:28 +0530
Subject: [PATCH] chore: add high-severity dapr-1.17 vulnerabilities to base
 allowlist

---
 .security/base-allowlist.json | 28 ++++++++++++++++++++++++++++
 1 file changed, 28 insertions(+)

diff --git a/.security/base-allowlist.json b/.security/base-allowlist.json
index 31db80e89..42eccc8f5 100644
--- a/.security/base-allowlist.json
+++ b/.security/base-allowlist.json
@@ -163,5 +163,33 @@
     "reason": "Base image — Chainguard Wolfi system Python package",
     "expires": "2026-07-16",
     "added_by": "anuj-atlan"
+  },
+  "SNYK-CHAINGUARDLATEST-DAPR117-16095272": {
+    "package": "dapr-1.17",
+    "severity": "HIGH",
+    "reason": "Base image — dapr-1.17@1.17.3-r1 in app-runtime-base. Fix available in 1.17.5-r0; awaiting base image update.",
+    "expires": "2026-07-17",
+    "added_by": "AngadSethi"
+  },
+  "SNYK-CHAINGUARDLATEST-DAPR117-16095309": {
+    "package": "dapr-1.17",
+    "severity": "HIGH",
+    "reason": "Base image — dapr-1.17@1.17.3-r1 in app-runtime-base. Fix available in 1.17.5-r0; awaiting base image update.",
+    "expires": "2026-07-17",
+    "added_by": "AngadSethi"
+  },
+  "SNYK-CHAINGUARDLATEST-DAPR117-16095311": {
+    "package": "dapr-1.17",
+    "severity": "HIGH",
+    "reason": "Base image — dapr-1.17@1.17.3-r1 in app-runtime-base. Fix available in 1.17.5-r0; awaiting base image update.",
+    "expires": "2026-07-17",
+    "added_by": "AngadSethi"
+  },
+  "SNYK-CHAINGUARDLATEST-DAPR117-16095340": {
+    "package": "dapr-1.17",
+    "severity": "HIGH",
+    "reason": "Base image — dapr-1.17@1.17.3-r1 in app-runtime-base. Fix available in 1.17.5-r0; awaiting base image update.",
+    "expires": "2026-07-17",
+    "added_by": "AngadSethi"
   }
 }
\ No newline at end of file