Merge pull request #1 from planningcenter/kh/add-support-for-ignore-l…

…ist-input

Feat: Add support for ignoring CVEs in Bundler Audit Action

action.yml

@@ -1,12 +1,21 @@
 name: "Bundler Audit Check"
 description: "Runs bundle-audit on pull requests with Gemfile.lock changes and fails the workflow if vulnerabilities are found."
 
+inputs:
+  ignore_list:
+    description: "Space-separated list of CVEs to ignore (e.g., CVE-2023-26141 CVE-2021-41182 CVE-2021-41183)"
+    required: false
+    default: ""
+
+
 runs:
   using: "composite"
   steps:
     - name: Run Bundle Audit
-      uses: planningcenter/bundle-audit-action@v1
+      uses: planningcenter/bundle-audit-action@v1.1.0
       id: bundle_audit
+      with:
+        ignore_list: ${{ inputs.ignore_list }}
 
     - name: Fail Workflow if Vulnerabilities Found
       if: ${{ steps.bundle_audit.outputs.has_vulnerabilities == 'true' }}