run pip-audit only on production code

2026-05-08 10:08:01 -04:00 · 2026-03-26 10:07:16 -07:00
parent 2f7afb4d57
commit dbfe67db31
2 changed files with 6 additions and 4 deletions
--- a/.ds.baseline
+++ b/.ds.baseline
@@ -151,7 +151,7 @@
        "filename": ".github/workflows/daily_checks.yml",
        "hashed_secret": "5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8",
        "is_verified": false,
-        "line_number": 63,
+        "line_number": 65,
        "is_secret": false
      },
      {
@@ -159,7 +159,7 @@
        "filename": ".github/workflows/daily_checks.yml",
        "hashed_secret": "5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8",
        "is_verified": false,
-        "line_number": 79,
+        "line_number": 81,
        "is_secret": false
      }
    ],
@@ -374,5 +374,5 @@
      }
    ]
  },
-  "generated_at": "2025-09-11T16:22:46Z"
+  "generated_at": "2026-03-26T17:07:05Z"
 }
--- a/.github/workflows/daily_checks.yml
+++ b/.github/workflows/daily_checks.yml
@@ -26,7 +26,9 @@ jobs:
      - uses: actions/checkout@v4
      - uses: ./.github/actions/setup-project
      - name: Create requirements.txt
-        run: poetry export --output requirements.txt
+        # Currently there is an unresolved vulnerability in 2.19.2 of pygments
+        # which is used by pytest.  Ignore dev dependencies vulnerabilities for now
+        run: poetry export --only main --output requirements.txt
      - uses: pypa/gh-action-pip-audit@v1.1.0
        with:
          inputs: requirements.txt