Skip to content

Commit

Permalink
🔒 Ignore CVE-2022-42969 until tox 4.0
Browse files Browse the repository at this point in the history 
Used by tox:
```
❯ poetry show py
 name         : py
 version      : 1.11.0
 description  : library with cross-python path, ini-parsing, io, code, log facilities

required by
 - tox >=1.4.17
```

But tox does not use the affected part of the library
- ref: tox-dev/tox#2524 (comment)
  • Loading branch information
@TeoZosa
TeoZosa committed Nov 21, 2022
1 parent aa0bcc4 commit fbb4727
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion tox.ini
View file
Expand Up @@ -90,7 +90,8 @@ commands = pre-commit run {posargs} -vv --all-files --color always
[testenv:security]
skip_install = true
deps = safety
commands = safety check --full-report -r {toxinidir}/requirements-all.txt
commands = safety check --full-report -r {toxinidir}/requirements-all.txt \
--ignore=51457 # CVE-2022-42969

[testenv:docs]
extras =
Expand Down

0 comments on commit fbb4727

Please sign in to comment.