Skip to content

Commit

Permalink
build(audit): exclude dev only vulnerability from audit
Browse files Browse the repository at this point in the history
  • Loading branch information
@daniel-makerx @achidlow
daniel-makerx authored and achidlow committed Dec 16, 2022
1 parent 9f38dfe commit 036fde5
Showing 1 changed file with 7 additions and 1 deletion.
8 changes: 7 additions & 1 deletion .github/workflows/check-python.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -23,7 +23,13 @@ jobs:
run: poetry install --no-interaction --no-root

- name: Audit with pip-audit
run: poetry run pip-audit
run: |
# audit non dev dependencies, no exclusions
poetry export --without=dev > requirements.txt && poetry run pip-audit -r requirements.txt
# audit all dependencies, with exclusions
poetry run pip-audit \
--ignore-vuln "GHSA-hcpj-qp55-gfph" # GitPython vulnerability, dev only dependency
- name: Check formatting with Black
run: |
Expand Down

1 comment on commit 036fde5

@github-actions
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Coverage

Coverage Report
FileStmtsMissCoverMissing
src/algokit
   __init__.py15753%6–13, 17–24, 32–34
   __main__.py220%1–3
src/algokit/cli
   bootstrap.py291934%12, 23–62
   init.py1531491%54, 208, 211–213, 224, 262, 299, 308–310, 313–318, 333
src/algokit/core
   click_extensions.py472057%40–43, 50, 56, 67–68, 73–74, 79–80, 91, 104–114
   conf.py27967%10–17, 24, 26
   doctor.py126497%56–57, 143–144
   log_handlers.py68987%44–45, 50–51, 63, 112–116, 125
   proc.py44198%94
   sandbox.py106793%82, 147, 163, 178–180, 195
TOTAL7899288% 

Tests Skipped Failures Errors Time
74 0 💤 0 ❌ 0 🔥 8.369s ⏱️

Please sign in to comment.