chore: add pip-audit and schedule step for weekly

closes #1076
2026-04-17 03:00:54 -04:00 · 2021-12-20 11:56:21 +01:00
parent 511b6bd6c0
commit df18d331c2
5 changed files with 339 additions and 3 deletions
--- a/4
+++ b/4
@@ -348,3 +348,7 @@ check_licenses:
 .PHONY: help # Generate list of targets with descriptions
 help:
 	@grep '^.PHONY: .* #' Makefile | sed 's/\.PHONY: \(.*\) # \(.*\)/\1\t\2/' | expand -t30 | sort
+
+.PHONY: pip_audit # Run pip-audit and check if there are known vulnerabilities in our dependencies
+pip_audit:
+	poetry run pip-audit