Edit workflow to run pip-audit against a poetry export file

2025-12-21 09:54:08 +00:00
parent e8f63386bb
commit 5353310e15
1 changed files with 5 additions and 2 deletions
--- a/.gitea/workflows/lint-and-security.yml
+++ b/.gitea/workflows/lint-and-security.yml
@@ -22,8 +22,11 @@ jobs:
      - name: Run pre-commit hooks
        run: pre-commit run --all-files --color always

-      - name: Install pip-audit
-        run: pip install pip-audit
+      - name: Audit dependencies
+        run: |
+          pip install poetry pip-audit
+          poetry export -f requirements.txt --without-hashes \
+            | pip-audit -r /dev/stdin

      - name: Run pip-audit
        run: pip-audit