Skip to content

chore(deps): bump the minor-and-patch group across 1 directory with 6 updates #12

chore(deps): bump the minor-and-patch group across 1 directory with 6 updates

chore(deps): bump the minor-and-patch group across 1 directory with 6 updates #12

Workflow file for this run

name: Security
on:
push:
branches: [main, develop]
pull_request:
branches: [main]
schedule:
- cron: "0 6 * * 1"
jobs:
pip-audit:
name: Dependency Vulnerability Scan
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v7
- name: Set up Python
uses: actions/setup-python@v6
with:
python-version: "3.12"
- name: Install Poetry
uses: snok/install-poetry@v1
with:
version: 2.4.1
virtualenvs-create: true
virtualenvs-in-project: true
- name: Load cached venv
id: cached-poetry-dependencies
uses: actions/cache@v6
with:
path: .venv
key: venv-security-${{ runner.os }}-3.12-${{ hashFiles('**/poetry.lock') }}
- name: Install dependencies
if: steps.cached-poetry-dependencies.outputs.cache-hit != 'true'
run: poetry install --no-interaction --no-root
- name: Audit dependencies
uses: pypa/gh-action-pip-audit@v1.1.0
with:
virtual-environment: .venv