Only run pip-audit on runtime dependencies in CI

2026-05-06 17:09:00 -04:00 · 2022-10-19 10:39:46 -04:00
parent 04aba21296
commit 773cd99790
4 changed files with 8 additions and 7 deletions
--- a/.github/workflows/daily_checks.yml
+++ b/.github/workflows/daily_checks.yml
@@ -38,7 +38,7 @@ jobs:
    - uses: ./.github/actions/setup-project
    - uses: trailofbits/gh-action-pip-audit@v1.0.0
      with:
-        inputs: requirements.txt requirements_for_test.txt
+        inputs: requirements.txt
        ignore-vulns: PYSEC-2022-237
    - name: Run npm audit
      run: make npm-audit