(libcloud) branch trunk updated: Ignore vulnerability in pip (PYSEC-2023-228).

tomaz Sun, 03 Dec 2023 02:49:55 -0800

This is an automated email from the ASF dual-hosted git repository.

tomaz pushed a commit to branch trunk
in repository https://gitbox.apache.org/repos/asf/libcloud.git



The following commit(s) were added to refs/heads/trunk by this push:
     new c3c666e46 Ignore vulnerability in pip (PYSEC-2023-228).
c3c666e46 is described below

commit c3c666e4668618a212736eb2c1c0b9c75ae9f70d
Author: Tomaz Muraus <to...@tomaz.me>
AuthorDate: Sun Dec 3 11:48:13 2023 +0100

    Ignore vulnerability in pip (PYSEC-2023-228).
---
 .github/workflows/main.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/main.yml b/.github/workflows/main.yml
index a76268bc5..1ba82d0ef 100644
--- a/.github/workflows/main.yml
+++ b/.github/workflows/main.yml
@@ -273,9 +273,11 @@ jobs:
         with:
           virtual-environment: venv/
           # setuptools which we don't install or depend on directly
+          # PYSEC-2023-228 - pip vulnerability and we don't install pip 
directly
           ignore-vulns: |
             GHSA-r9hx-vwmv-q579
             PYSEC-2022-43012
+            PYSEC-2023-228
 
       - name: Cleanup
         run: |

(libcloud) branch trunk updated: Ignore vulnerability in pip (PYSEC-2023-228).

Reply via email to