Bump trailofbits/gh-action-pip-audit from 1.0.4 to 1.0.5 (#460)

Bumps [trailofbits/gh-action-pip-audit](https://github.com/trailofbits/gh-action-pip-audit) from 1.0.4 to 1.0.5.
- [Release notes](https://github.com/trailofbits/gh-action-pip-audit/releases)
- [Commits](https://github.com/trailofbits/gh-action-pip-audit/compare/v1.0.4...v1.0.5)

---
updated-dependencies:
- dependency-name: trailofbits/gh-action-pip-audit
  dependency-type: direct:production
  update-type: version-update:semver-patch
...

Signed-off-by: dependabot[bot] <support@github.com>

Signed-off-by: dependabot[bot] <support@github.com>
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This commit is contained in:
dependabot[bot] 2023-01-11 11:13:38 +02:00 committed by GitHub
parent 4f43933d9c
commit fd7d45ab87
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23

View file

@ -36,7 +36,7 @@ jobs:
pip install --upgrade pip setuptools pip install --upgrade pip setuptools
python -m pip install poetry python -m pip install poetry
poetry install poetry install
- uses: trailofbits/gh-action-pip-audit@v1.0.4 - uses: trailofbits/gh-action-pip-audit@v1.0.5
with: with:
virtual-environment: .venv virtual-environment: .venv
ignore-vulns: | ignore-vulns: |