Add dependency scanning CI step

pyinat · Jun 12, 2023 · ac1f8ec · ac1f8ec
1 parent 73b0d8a
commit ac1f8ec
Showing 1 changed file with 5 additions and 0 deletions.
diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
@@ -65,3 +65,8 @@ jobs:
           python-version: ${{ env.LATEST_PY_VERSION }}
       - name: Run style checks & linting
         uses: pre-commit/[email protected]
+      - name: Scan dependencies for known vulnerabilities
+        uses: pypa/[email protected]
+        with:
+          vulnerability-service: osv
+          ignore-vulns: PYSEC-2022-43012  # older setuptools used by the action itself