diff --git a/.grype.yaml b/.grype.yaml
index 64479a5b..5fdae403 100644
--- a/.grype.yaml
+++ b/.grype.yaml
@@ -10,3 +10,8 @@ ignore:
   - vulnerability: CVE-2021-22570
     package:
       name: google.golang.org/protobuf
+  # Bumping to a fixed version requires bumping Go and K8s versions as well which
+  # are problematic in a dot release.
+  - vulnerability: GHSA-hfmw-7g3m-gj6q
+    package:
+      name: github.com/coredns/coredns