Skip to content

Scan dependencies for vulnerabilities with pip-audit #1139

Scan dependencies for vulnerabilities with pip-audit

Scan dependencies for vulnerabilities with pip-audit #1139

Workflow file for this run

name: Scan dependencies for vulnerabilities with pip-audit
on:
push:
branches: ["master"]
pull_request:
branches: ["master"]
schedule:
- cron: "0 12 * * *"
jobs:
pip-audit:
runs-on: ubuntu-latest
steps:
- name: Checkout repository
uses: actions/checkout@eef61447b9ff4aafe5dcd4e0bbf5d482be7e7871
- name: Install Python
uses: actions/setup-python@v5
with:
python-version: "3.x"
- name: Install project
run: make dev
- name: Run pip-audit
uses: trailofbits/gh-action-pip-audit@v1.0.8
with:
virtual-environment: env/
ignore-vulns: |
GHSA-w596-4wvx-j9j6