Bump trailofbits/gh-action-pip-audit from 1.0.0 to 1.0.4 (#452)
Bumps [trailofbits/gh-action-pip-audit](https://github.com/trailofbits/gh-action-pip-audit) from 1.0.0 to 1.0.4. - [Release notes](https://github.com/trailofbits/gh-action-pip-audit/releases) - [Commits](https://github.com/trailofbits/gh-action-pip-audit/compare/v1.0.0...v1.0.4) --- updated-dependencies: - dependency-name: trailofbits/gh-action-pip-audit dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <support@github.com> Signed-off-by: dependabot[bot] <support@github.com> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: dvora-h <67596500+dvora-h@users.noreply.github.com>
This commit is contained in:
parent
895fd41620
commit
4f43933d9c
1 changed files with 1 additions and 1 deletions
2
.github/workflows/ci.yml
vendored
2
.github/workflows/ci.yml
vendored
|
@ -36,7 +36,7 @@ jobs:
|
|||
pip install --upgrade pip setuptools
|
||||
python -m pip install poetry
|
||||
poetry install
|
||||
- uses: trailofbits/gh-action-pip-audit@v1.0.0
|
||||
- uses: trailofbits/gh-action-pip-audit@v1.0.4
|
||||
with:
|
||||
virtual-environment: .venv
|
||||
ignore-vulns: |
|
||||
|
|
Loading…
Reference in a new issue