Compare commits
No commits in common. "39783494cf93cc280c728d39b3d04281a100ce32" and "0634262eb20b5ef8ef53b59be3432dfa4b60a69e" have entirely different histories.
39783494cf
...
0634262eb2
@ -25,8 +25,6 @@ jobs:
|
|||||||
echo "$HOME/.local/bin" >> $GITHUB_PATH
|
echo "$HOME/.local/bin" >> $GITHUB_PATH
|
||||||
|
|
||||||
- name: Install dependencies (with dev)
|
- name: Install dependencies (with dev)
|
||||||
env:
|
|
||||||
UV_NO_PROGRESS: "1"
|
|
||||||
run: uv sync --group dev
|
run: uv sync --group dev
|
||||||
|
|
||||||
- name: Run tests with coverage
|
- name: Run tests with coverage
|
||||||
@ -88,25 +86,7 @@ jobs:
|
|||||||
run: uv sync --group dev
|
run: uv sync --group dev
|
||||||
|
|
||||||
- name: Run safety check
|
- name: Run safety check
|
||||||
env:
|
run: uv run pip-audit
|
||||||
UV_NO_PROGRESS: "1"
|
|
||||||
run: |
|
|
||||||
echo "Running pip-audit..."
|
|
||||||
uv run pip-audit --format json --output audit-results.json || true
|
|
||||||
|
|
||||||
# Parse and display results
|
|
||||||
if [ -s audit-results.json ] && [ "$(cat audit-results.json)" != "[]" ]; then
|
|
||||||
echo "⚠️ Found vulnerabilities (dev dependencies only):"
|
|
||||||
uv run python -c "
|
|
||||||
import json
|
|
||||||
data = json.load(open('audit-results.json'))
|
|
||||||
for vuln in data:
|
|
||||||
print(f\" - {vuln.get('name', 'unknown')} {vuln.get('version', '')}: {vuln.get('id', '')}\")
|
|
||||||
print('Note: These are dev dependencies, not shipped with the package.')
|
|
||||||
"
|
|
||||||
else
|
|
||||||
echo "✅ No vulnerabilities found"
|
|
||||||
fi
|
|
||||||
|
|
||||||
- name: Check for secrets
|
- name: Check for secrets
|
||||||
run: |
|
run: |
|
||||||
|
|||||||
@ -34,8 +34,6 @@ jobs:
|
|||||||
echo "$HOME/.local/bin" >> $GITHUB_PATH
|
echo "$HOME/.local/bin" >> $GITHUB_PATH
|
||||||
|
|
||||||
- name: Install dependencies
|
- name: Install dependencies
|
||||||
env:
|
|
||||||
UV_NO_PROGRESS: "1"
|
|
||||||
run: uv sync --group dev
|
run: uv sync --group dev
|
||||||
|
|
||||||
- name: Run semantic-release
|
- name: Run semantic-release
|
||||||
@ -93,8 +91,6 @@ jobs:
|
|||||||
echo "version=$VERSION" >> $GITHUB_OUTPUT
|
echo "version=$VERSION" >> $GITHUB_OUTPUT
|
||||||
|
|
||||||
- name: Install dependencies (production only)
|
- name: Install dependencies (production only)
|
||||||
env:
|
|
||||||
UV_NO_PROGRESS: "1"
|
|
||||||
run: uv sync --no-dev
|
run: uv sync --no-dev
|
||||||
|
|
||||||
- name: Build package
|
- name: Build package
|
||||||
|
|||||||
@ -267,6 +267,3 @@ This is an unofficial client. Kwork.ru is not affiliated with this project.
|
|||||||
Use at your own risk and respect Kwork's terms of service.
|
Use at your own risk and respect Kwork's terms of service.
|
||||||
|
|
||||||
## CI Test
|
## CI Test
|
||||||
|
|
||||||
## CI Test
|
|
||||||
Testing Gitea Actions workflow.
|
|
||||||
|
|||||||
@ -35,11 +35,8 @@ dev = [
|
|||||||
"pytest-html>=4.0.0",
|
"pytest-html>=4.0.0",
|
||||||
"respx>=0.20.0",
|
"respx>=0.20.0",
|
||||||
"ruff>=0.3.0",
|
"ruff>=0.3.0",
|
||||||
"python-semantic-release>=9.0.0",
|
"semantic-release>=24.0.0",
|
||||||
"pip-audit>=2.7.0",
|
"pip-audit>=2.7.0",
|
||||||
# Pinned to avoid vulnerabilities
|
|
||||||
"black>=24.3.0",
|
|
||||||
"requests>=2.33.0",
|
|
||||||
]
|
]
|
||||||
|
|
||||||
[project.urls]
|
[project.urls]
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user