Fix gitignore line for *.iml files

Author: sd234678

.last-exported-commit

@@ -1 +1 @@
-Last exported commit from parent repo: d6e5804d6fcba05fe0af882a0c1db8ffb0050320
+Last exported commit from parent repo: 9737839d92e3d170e213434fec8533a7f1375ea3

nix-bootstrap.cabal

@@ -5,7 +5,7 @@ cabal-version: 2.0
 -- see: https://github.com/sol/hpack
 
 name:           nix-bootstrap
-version:        1.5.4.3
+version:        1.5.5.0
 author:         gchquser
 maintainer:     [email protected]
 copyright:      Crown Copyright

package.yaml

@@ -12,7 +12,7 @@
 # See the License for the specific language governing permissions and
 # limitations under the License.
 name: nix-bootstrap
-version: 1.5.4.3
+version: 1.5.5.0
 author: gchquser
 maintainer: [email protected]
 copyright: Crown Copyright

src/Bootstrap/Data/Bootstrappable/Gitignore.hs

@@ -149,7 +149,7 @@ ggJavaIDEFiles =
             ".project",
             ".classpath",
             ".idea/",
-            ".iml"
+            "*.iml"
           ]
 
 ggJavaMobileTools :: GitignoreGroup

vulnerability-whitelist.toml

@@ -54,8 +54,11 @@ comment = "CVEs refer to RedHat Fuse, not C libfuse (Filesystem in Userspace) on
 comment = "gcc is only a build-time dependency so we are not vulnerable to this attack."
 
 ["glibc"]
-cve = ["CVE-2023-4527", "CVE-2023-4813", "CVE-2023-5156", "CVE-2023-0687", "CVE-2023-6779"]
-comment = "Crashes accepted as not a critical system. Stack contents of nix-bootstrap should never be sensitive."
+cve = ["CVE-2023-4527", "CVE-2023-4813", "CVE-2023-5156", "CVE-2023-0687", "CVE-2023-6779", "CVE-2023-4911"]
+comment = """Crashes accepted as not a critical system. Stack contents of nix-bootstrap should never be sensitive.
+
+  However, CVE-2023-4911 poses a genuine risk. The fix is not yet available in nixpkgs, but it should be applied once it is."""
+until = "2024-03-31"
 
 ["git"]
 comment = """Git is only a build-time dependency of the project; it is the responsibility of users \