File tree Expand file tree Collapse file tree 2 files changed +1
-8
lines changed
Expand file tree Collapse file tree 2 files changed +1
-8
lines changed Original file line number Diff line number Diff line change @@ -57,8 +57,7 @@ The following table lists all known vulnerabilities that could not be fixed:
5757| ---------- | ------------------- | ------------------ | ------------- | -------------- | ------------------------------------ |
5858| urllib3 | GHSA-48p4 -8xcf-vxj5 | 2.2.3 | 2.5.0 | 3.8 | Fixed package requires Python >= 3.9 |
5959| urllib3 | GHSA-pq67 -6m6q-mj2v | 2.2.3 | 2.5.0 | 3.8 | Fixed package requires Python >= 3.9 |
60- | pip | GHSA-4xh5 -x5gv-qwph | 25.0.1 | 25.2 | 3.8 | Fixed package requires Python >= 3.9 |
61- | pip | GHSA-4xh5 -x5gv-qwph | 25.2 | - | All | Waiting for an open source fix |
60+ | pip | GHSA-4xh5 -x5gv-qwph | 25.0.1 | 25.3 | 3.8 | Fixed package requires Python >= 3.9 |
6261
6362### Vulnerable Python Versions
6463
Original file line number Diff line number Diff line change @@ -50,12 +50,6 @@ EXTRA_ARGS = [
5050[
5151 pip_audit_rule (
5252 name = "pip_audit_requirements_{}" .format (version .replace ("." , "_" )),
53- # The list of ignored vulnerabilities should ideally be empty, but sometimes a certain vulnerability
54- # does not have a fix yet. In that case, we ignore it with `--ignore-vul` to avoid CI failures.
55- # Keep this in sync with SECURITY.md.
56- ignore_vulnerability = [
57- "GHSA-4xh5-x5gv-qwph" , # Added because there is no fix yet for pip 25.2.
58- ],
5953 requirement = "requirements_lock_{}.txt" .format (version .replace ("." , "_" )),
6054 )
6155 for version in PYTHON_VERSIONS
You can’t perform that action at this time.
0 commit comments