From bf15121d08f9d46de8cfb5ea897cc404654d65db Mon Sep 17 00:00:00 2001
From: Ilya Maximets <i.maximets@ovn.org>
Date: Thu, 30 Oct 2025 23:47:58 +0100
Subject: [PATCH] ovn-kubernetes: Remove exemptions for now unpinned OVN rpms.

ovn* RPMs are no longer pinned in ovn-kubernetes images in order to
facilitate timely CVE and bug fix delivery.  Remove from exemptions.

rh-pre-commit.version: 2.3.2
rh-pre-commit.check-secrets: ENABLED

Signed-off-by: Ilya Maximets <i.maximets@ovn.org>
---
 images/ose-ovn-kubernetes.yml        | 1 -
 images/ovn-kubernetes-base.yml       | 1 -
 images/ovn-kubernetes-microshift.yml | 1 -
 3 files changed, 3 deletions(-)

diff --git a/images/ose-ovn-kubernetes.yml b/images/ose-ovn-kubernetes.yml
index 3c2d69648f..4e695dd46c 100644
--- a/images/ose-ovn-kubernetes.yml
+++ b/images/ose-ovn-kubernetes.yml
@@ -27,7 +27,6 @@ scan_sources:
   # https://github.com/openshift/ovn-kubernetes/blob/e236fea83d62de8b60b9456770a3e0b525830051/Dockerfile.base#L22
   exempt_rpms:
   - libreswan
-  - ovn*
 
 for_payload: true
 from:
diff --git a/images/ovn-kubernetes-base.yml b/images/ovn-kubernetes-base.yml
index bacfa95d57..f8a9637569 100644
--- a/images/ovn-kubernetes-base.yml
+++ b/images/ovn-kubernetes-base.yml
@@ -28,7 +28,6 @@ scan_sources:
   # https://github.com/openshift/ovn-kubernetes/blob/e236fea83d62de8b60b9456770a3e0b525830051/Dockerfile.base#L22
   exempt_rpms:
   - libreswan
-  - ovn*
 for_payload: false
 for_release: false
 from:
diff --git a/images/ovn-kubernetes-microshift.yml b/images/ovn-kubernetes-microshift.yml
index 9cad495248..ac4f1db699 100644
--- a/images/ovn-kubernetes-microshift.yml
+++ b/images/ovn-kubernetes-microshift.yml
@@ -27,7 +27,6 @@ scan_sources:
   # https://github.com/openshift/ovn-kubernetes/blob/e236fea83d62de8b60b9456770a3e0b525830051/Dockerfile.base#L22
   exempt_rpms:
   - libreswan
-  - ovn*
 for_payload: true
 from:
   builder: