Skip to content

Commit c76d6e3

Browse files
dannywillemsdannywillems
committed
CI: add pip-audit security scanning
1 parent 306495c commit c76d6e3

File tree

2 files changed

+6
-2
lines changed

2 files changed

+6
-2
lines changed

.github/workflows/actions.yml

Lines changed: 5 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -11,8 +11,8 @@ jobs:
1111
os: [ubuntu-latest, macos-latest, windows-latest]
1212
runs-on: ${{ matrix.os }}
1313
steps:
14-
- uses: actions/checkout@v2
15-
- uses: actions/setup-python@v2
14+
- uses: actions/checkout@v4
15+
- uses: actions/setup-python@v5
1616
with:
1717
python-version: ${{ matrix.python-version }}
1818
- name: Install poetry
@@ -25,3 +25,6 @@ jobs:
2525
run: poetry run pytest tests
2626
- name: Run black
2727
run: poetry run black leakix/*.py tests/*.py example/*.py --check
28+
- name: Security audit
29+
if: matrix.python-version != '3.7'
30+
run: poetry run pip-audit

pyproject.toml

Lines changed: 1 addition & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -17,6 +17,7 @@ black = "*"
1717
mypy = "*"
1818
requests-mock = "*"
1919
pylint = "*"
20+
pip-audit = "*"
2021

2122
[build-system]
2223
requires = ["poetry-core>=1.0.0"]

0 commit comments

Comments
 (0)