-
Notifications
You must be signed in to change notification settings - Fork 534
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix: add pinning advice back to legacy formatter #826
Conversation
3f9756a
to
016bbcc
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Looks good! Some small comments
test/acceptance/workspaces/pip-app-transitive-vuln/cli-output.txt
Outdated
Show resolved
Hide resolved
77c12d6
to
5c8ca24
Compare
Remediation: | ||
Upgrade direct dependency flask@0.12.2 to flask@0.12.2 (triggers upgrades to flask@0.12.2) | ||
Remediation: | ||
Pin the transitive dependency Jinja2 to version 2.10.1 |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
this is a super weird fixture we never used to have remediation for python :|
@@ -324,4 +324,4 @@ | |||
"org": "kyegupov" |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
accidental change?
5c8ca24
to
11041c8
Compare
11041c8
to
8268159
Compare
@lwywoo @robcresswell what is left to do here? |
@lili2311 Nothing, I've just been swamped with other high priority things. |
🎉 This PR is included in version 1.242.1 🎉 The release is available on: Your semantic-release bot 📦🚀 |
What does this PR do?
Adding the pinning advice back to the legacy formatter for python projects.
Without the
actionableCliRemediation
flag and onlypythonPinningAdvice
flag: