From 5353310e15f87c7827a60647a160ffefe6dd1cae Mon Sep 17 00:00:00 2001
From: Marco D'Aleo <marco@marcodaleo.com>
Date: Sun, 21 Dec 2025 09:54:08 +0000
Subject: [PATCH] Edit workflow to run pip-audit against a poetry export file

---
 .gitea/workflows/lint-and-security.yml | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/.gitea/workflows/lint-and-security.yml b/.gitea/workflows/lint-and-security.yml
index b74bef1..51377d9 100644
--- a/.gitea/workflows/lint-and-security.yml
+++ b/.gitea/workflows/lint-and-security.yml
@@ -22,8 +22,11 @@ jobs:
       - name: Run pre-commit hooks
         run: pre-commit run --all-files --color always
 
-      - name: Install pip-audit
-        run: pip install pip-audit
+      - name: Audit dependencies
+        run: |
+          pip install poetry pip-audit
+          poetry export -f requirements.txt --without-hashes \
+            | pip-audit -r /dev/stdin
 
       - name: Run pip-audit
         run: pip-audit