From 63509c90f6970e04dd3583ee4ff87984bb0939e4 Mon Sep 17 00:00:00 2001
From: Mark Stacey <markjstacey@gmail.com>
Date: Mon, 7 Oct 2024 14:37:40 -0230
Subject: [PATCH] chore: Temporarily ignore advisory

The advisory https://github.com/advisories/GHSA-593m-55hh-j8gv has been
temporarily ignored, just for v12.4.x. This is resolved by a dependency
update in v12.5.0, but the update included too many functional changes,
so we deemed it too risky to backport in this release.

The impact is expected to be negligable due to our use of LavaMoat and
SES lockdown.
---
 .yarnrc.yml | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/.yarnrc.yml b/.yarnrc.yml
index 252333917781..7176c6152327 100644
--- a/.yarnrc.yml
+++ b/.yarnrc.yml
@@ -43,6 +43,12 @@ npmAuditIgnoreAdvisories:
   # not appear to be used.
   - 1092461
 
+  # Issue: Sentry SDK Prototype Pollution gadget in JavaScript SDKs
+  # URL: https://github.com/advisories/GHSA-593m-55hh-j8gv
+  # Not easily fixed in this version, will be fixed in v12.5.0
+  # Minimally effects the extension due to usage of LavaMoat + SES lockdown.
+  - 1099839
+
   # Temp fix for https://github.com/MetaMask/metamask-extension/pull/16920 for the sake of 11.7.1 hotfix
   # This will be removed in this ticket https://github.com/MetaMask/metamask-extension/issues/22299
   - 'ts-custom-error (deprecation)'