From dbfe67db31a2b040bc98205cc9b24213714af5f1 Mon Sep 17 00:00:00 2001
From: Kenneth Kehl <@kkehl@flexion.us>
Date: Thu, 26 Mar 2026 10:07:16 -0700
Subject: [PATCH] run pip-audit only on production code

---
 .ds.baseline                       | 6 +++---
 .github/workflows/daily_checks.yml | 4 +++-
 2 files changed, 6 insertions(+), 4 deletions(-)

diff --git a/.ds.baseline b/.ds.baseline
index e82c0fc0e..2f882c23d 100644
--- a/.ds.baseline
+++ b/.ds.baseline
@@ -151,7 +151,7 @@
         "filename": ".github/workflows/daily_checks.yml",
         "hashed_secret": "5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8",
         "is_verified": false,
-        "line_number": 63,
+        "line_number": 65,
         "is_secret": false
       },
       {
@@ -159,7 +159,7 @@
         "filename": ".github/workflows/daily_checks.yml",
         "hashed_secret": "5baa61e4c9b93f3f0682250b6cf8331b7ee68fd8",
         "is_verified": false,
-        "line_number": 79,
+        "line_number": 81,
         "is_secret": false
       }
     ],
@@ -374,5 +374,5 @@
       }
     ]
   },
-  "generated_at": "2025-09-11T16:22:46Z"
+  "generated_at": "2026-03-26T17:07:05Z"
 }
diff --git a/.github/workflows/daily_checks.yml b/.github/workflows/daily_checks.yml
index 717b4825c..9c2ce9d1d 100644
--- a/.github/workflows/daily_checks.yml
+++ b/.github/workflows/daily_checks.yml
@@ -26,7 +26,9 @@ jobs:
       - uses: actions/checkout@v4
       - uses: ./.github/actions/setup-project
       - name: Create requirements.txt
-        run: poetry export --output requirements.txt
+        # Currently there is an unresolved vulnerability in 2.19.2 of pygments
+        # which is used by pytest.  Ignore dev dependencies vulnerabilities for now
+        run: poetry export --only main --output requirements.txt
       - uses: pypa/gh-action-pip-audit@v1.1.0
         with:
           inputs: requirements.txt