update it

Author: anthony-nhs

Makefile

@@ -57,7 +57,7 @@ scan-image-json: guard-CONTAINER_NAME guard-BASE_FOLDER
 		--scanners vuln \
 		--exit-code 1 \
 		--format json \
-		--output .out/scan.out.json "${CONTAINER_PREFIX}$${CONTAINER_NAME}" 
+		--output .out/scan_results_docker.json "${CONTAINER_PREFIX}$${CONTAINER_NAME}" 
 
 shell-image: guard-CONTAINER_NAME
 	docker run -it \

README.md

@@ -147,12 +147,12 @@ CONTAINER_NAME=fhir_facade_api \
 ## Generating a .trivyignore file
 You can generate a .trivyignore file for known vulnerabilities by either downloading the json scan output generated by the build, or by generating it locally using the scanning images commands above with a make target of scan-image-json
 
-If generated locally, then the output goes into .out/scan.out.json
+If generated locally, then the output goes into .out/scan_results_docker.json
 
 Once you have the scan output, use the following to generate a .trivyignore
 ```
 poetry run python \
   scripts/trivy_to_trivyignore.py \
-  --input .out/scan.out.json \
+  --input .out/scan_results_docker.json \
   --output src/common/.trivyignore.yaml 
 ```

src/common/.trivyignore.yaml

@@ -302,3 +302,8 @@ vulnerabilities:
     purls:
       - "pkg:deb/ubuntu/linux-libc-dev@5.15.0-170.180?arch=arm64&distro=ubuntu-22.04"
     expired_at: 2026-08-12
+  - id: CVE-2025-68121
+    statement: "crypto/tls: Unexpected session resumption in crypto/tls"
+    purls:
+      - "pkg:golang/stdlib@v1.25.6"
+    expired_at: 2026-08-13