From 72c1ff6085b62d62fbf8bbb0be9b330074ae6ed7 Mon Sep 17 00:00:00 2001
From: Kovid Goyal <kovid@kovidgoyal.net>
Date: Sat, 6 Jun 2026 18:53:13 +0530
Subject: [PATCH] Ignore inapplicable CVE

---
 .github/workflows/ci.py | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/ci.py b/.github/workflows/ci.py
index 268be73b2..2ac14383a 100644
--- a/.github/workflows/ci.py
+++ b/.github/workflows/ci.py
@@ -234,6 +234,7 @@ IGNORED_DEPENDENCY_CVES = [
     'CVE-2026-1502',
     'CVE-2026-7210',  # DoS in unused XML parser
     'CVE-2026-3276',  # DoS in unicodedata.normalize()
+    'CVE-2026-7774',  # tarfile.data_filter path traversal bypass
     # github.com/nwaples/rardecode/v2
     'CVE-2025-11579', # rardecode is version 2.2.1, not vulnerable
     'CVE-2026-2673',  # openssl fix not released