Skip to content

Commit 92e490d

Browse files
anthony-nhsanthony-nhs
committed
Merge remote-tracking branch 'origin/main' into use_container_at_job_level
2 parents 66ecdfa + 184a7ea commit 92e490d

4 files changed

Lines changed: 114 additions & 241 deletions

File tree

.github/workflows/quality-checks.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -182,7 +182,7 @@ jobs:
182182
fi
183183
touch trivy.yaml
184184
- name: Update trivy config to include dev dependencies
185-
uses: mikefarah/yq@2be0094729a1006f61e8339ce9934bfb3cbb549f
185+
uses: mikefarah/yq@5a7e72a743649b1b3a47d1a1d8214f3453173c51
186186
with:
187187
cmd: yq -i '.pkg.include-dev-deps = true' 'trivy.yaml'
188188
- name: convert python dependencies to requirements.txt

.trivyignore.yaml

Lines changed: 5 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -13,9 +13,9 @@ vulnerabilities:
1313
- id: CVE-2026-0775
1414
statement: npm vulnerability accepted as risk - dependency of semantic-release
1515
expired_at: 2026-03-01
16-
- id: CVE-2026-26960
17-
statement: tar vulnerability accepted as risk - dependency of semantic-release
18-
expired_at: 2026-03-01
1916
- id: CVE-2026-26996
20-
statement: minimatch vulnerability accepted as risk - dependency of semantic-release
21-
expired_at: 2026-04-01
17+
statement: minimatch vulnerability accepted as risk
18+
expired_at: 2026-06-01
19+
- id: CVE-2026-26960
20+
statement: tar vulnerability accepted as risk
21+
expired_at: 2026-06-01

0 commit comments

Comments
 (0)