Philipp/aki_prj23_transparenzregister
Philipp/aki_prj23_transparenzregister
1
0
Fork 0
mirror of https://github.com/fhswf/aki_prj23_transparenzregister.git synced 2025-05-14 05:18:46 +02:00
Code Issues Packages Projects Releases Wiki Activity

Made pip-audit pass on every build. (#272)

Browse Source 
Since dependabot is activated this can be reduced as an reporting tool.
This commit is contained in:
Philipp Horstenkamp 2023-10-26 18:50:24 +02:00 committed by GitHub
parent 4c56431bff
commit ab97d77d2d
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 4 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

7
.github/workflows/lint-actions.yaml vendored
View File

@ -59,6 +59,9 @@ jobs:
- name: Check license - name: Check license
run: | run: |
poetry run pip-licenses --format=markdown --output-file=license-summary.md poetry run pip-licenses --format=markdown --output-file=license-summary.md
- name: Check requirements security with pip-audit
run: |
poetry run pip-audit --format markdown -o lbr-audit.md || true
- name: Archive license summary - name: Archive license summary
uses: actions/upload-artifact@v3 uses: actions/upload-artifact@v3
with: with:
@ -66,6 +69,4 @@ jobs:
path: | path: |
license-summary.md license-summary.md
requirements.txt requirements.txt
- name: Check requirements security with pip-audit lbr-audit.md
run: |
poetry run pip-audit --format markdown -o lbr-audit.md