Bump trailofbits/gh-action-pip-audit from 1.0.0 to 1.0.4 (#452)

Bumps [trailofbits/gh-action-pip-audit](https://github.com/trailofbits/gh-action-pip-audit) from 1.0.0 to 1.0.4.
- [Release notes](https://github.com/trailofbits/gh-action-pip-audit/releases)
- [Commits](https://github.com/trailofbits/gh-action-pip-audit/compare/v1.0.0...v1.0.4)

---
updated-dependencies:
- dependency-name: trailofbits/gh-action-pip-audit
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: dvora-h <67596500+dvora-h@users.noreply.github.com>
This commit is contained in:
dependabot[bot] 2023-01-09 12:33:10 +02:00 committed by GitHub
parent 895fd41620
commit 4f43933d9c
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -36,7 +36,7 @@ jobs:
pip install --upgrade pip setuptools pip install --upgrade pip setuptools
python -m pip install poetry python -m pip install poetry
poetry install poetry install
- uses: trailofbits/gh-action-pip-audit@v1.0.0 - uses: trailofbits/gh-action-pip-audit@v1.0.4
with: with:
virtual-environment: .venv virtual-environment: .venv
ignore-vulns: | ignore-vulns: |