[libcloud] 01/02: Ignore setuptools vulnerability over we don't have a direct control (we just use version which is installed in the end user environment).

tomaz Mon, 31 Jul 2023 03:44:01 -0700

This is an automated email from the ASF dual-hosted git repository.

tomaz pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/libcloud.git


commit b48bb1eeb5e933f3896dfb30a0a300e0e86f1bf0
Author: Tomaz Muraus <to...@tomaz.me>
AuthorDate: Mon Jul 31 12:32:47 2023 +0200

    Ignore setuptools vulnerability over we don't have a direct control (we
    just use version which is installed in the end user environment).
---
 .github/workflows/main.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index 9fa8b0f1c..1fac3d4f5 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -293,6 +293,7 @@ jobs:
           # setuptools which we don't install or depend on directly
           ignore-vulns: |
             GHSA-r9hx-vwmv-q579
+            PYSEC-2022-43012
 
       - name: Cleanup
         run: |

[libcloud] 01/02: Ignore setuptools vulnerability over we don't have a direct control (we just use version which is installed in the end user environment).

Reply via email to