Add python and npm audits to checks.yml

2026-05-02 23:20:56 -04:00 · 2022-08-25 20:36:13 +00:00
parent c982254ef0
commit fa7b1a41b8
5 changed files with 83 additions and 13 deletions
--- a/8
+++ b/8
@@ -73,6 +73,14 @@ freeze-requirements: ## create static requirements.txt
 	${VIRTUALENV_ROOT}/bin/pip install --upgrade pip-tools
 	${VIRTUALENV_ROOT}/bin/pip-compile requirements.in

+.PHONY: pip-audit
+pip-audit:
+	pip install --upgrade pip-audit
+	pip-audit -r requirements.txt -r requirements_for_test.txt -l --ignore-vuln PYSEC-2022-237
+
+.PHONY: audit
+audit: npm-audit pip-audit
+
 .PHONY: clean
 clean:
 	rm -rf node_modules cache target ${CF_MANIFEST_PATH}