Update version #958
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
# This workflow will check third-party Python packages for vulnerabilities using pip-audit. | |
# pip-audit finds vulnerabilities from packages that are dependencies of | |
# the packages in the requirements.txt file. Utilize a virtualenv to avoid checking system packages. | |
# Generates a summary at the end of the action. | |
# For more information see: https://help.github.com/actions/language-and-framework-guides/using-python-with-github-actions | |
name: Python vulerability check | |
on: | |
push: | |
branches: | |
- develop | |
- develop-ref | |
- feature_* | |
- main_* | |
- bugfix_* | |
- test_* | |
- issue_* | |
pull_request: | |
types: [opened, reopened, synchronize] | |
jobs: | |
selftest: | |
runs-on: ubuntu-22.04 | |
steps: | |
- uses: actions/checkout@v4 | |
- name: install | |
run: | | |
python -m venv env/ | |
source env/bin/activate | |
python -m pip install . | |
- uses: pypa/[email protected] | |
with: | |
inputs: requirements.txt | |
virtual-environment: env/ | |
local: true | |
summary: true |