From 7e32d8111384f59a44ea2c5981fbdb0b6930dcb1 Mon Sep 17 00:00:00 2001
From: Eric Cornelissen <ericornelissen@gmail.com>
Date: Sun, 25 Jun 2023 22:17:37 +0200
Subject: [PATCH] Ignore GHSA-c2qf-rxjj-qqgw when auditing for v1 main branch
 (#484)

The dependency is only introduced through development dependencies and
there this vulnerability has limited impact.
---
 .nsprc | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/.nsprc b/.nsprc
index 0dcf7267..bbe5ff4f 100644
--- a/.nsprc
+++ b/.nsprc
@@ -2,5 +2,9 @@
   "GHSA-ww39-953v-wcq6": {
     "active": true,
     "notes": "ReDoS introduced through transitive dependency of ESLint@6. Since ESLint@6 is only used for compatibility testing the risk is accepted"
+  },
+  "GHSA-c2qf-rxjj-qqgw": {
+    "active": true,
+    "notes": "ReDoS in various devDependency trees with limited impact. Updates may come in over time."
   }
 }