diff --git a/.github/workflows/scan-image.yml b/.github/workflows/scan-image.yml index 12d02115..77591111 100644 --- a/.github/workflows/scan-image.yml +++ b/.github/workflows/scan-image.yml @@ -43,12 +43,12 @@ jobs: vuln-type: 'os,library' severity: 'CRITICAL,HIGH' - - name: Scan for vulnerabilities (informative, non-breaking) - uses: aquasecurity/trivy-action@master - with: - image-ref: ${{ secrets.ECR_REGISTRY }}/${{ inputs.ECR_REPOSITORY }}:${{ github.sha }} - format: 'table' - exit-code: '0' - ignore-unfixed: false - vuln-type: 'os,library' - severity: 'UNKNOWN,LOW,MEDIUM,CRITICAL,HIGH' + #- name: Scan for vulnerabilities (informative, non-breaking) + # uses: aquasecurity/trivy-action@master + # with: + # image-ref: ${{ secrets.ECR_REGISTRY }}/${{ inputs.ECR_REPOSITORY }}:${{ github.sha }} + # format: 'table' + # exit-code: '0' + # ignore-unfixed: false + # vuln-type: 'os,library' + # severity: 'UNKNOWN,LOW,MEDIUM,CRITICAL,HIGH' diff --git a/requirements/generated/requirements-linting.txt b/requirements/generated/requirements-linting.txt index fcdb0b35..8ecbf6e3 100644 --- a/requirements/generated/requirements-linting.txt +++ b/requirements/generated/requirements-linting.txt @@ -4,139 +4,5 @@ # # pip-compile --output-file=requirements/generated/requirements-linting.txt requirements/source/requirements-linting.in # -alembic==1.13.2 - # via - # -r requirements/source/requirements-base.in - # alembic-postgresql-enum -alembic-postgresql-enum==1.3.0 - # via -r requirements/source/requirements-base.in -annotated-types==0.7.0 - # via pydantic -anyio==4.4.0 - # via - # httpx - # starlette - # watchfiles -argon2-cffi==23.1.0 - # via -r requirements/source/requirements-base.in -argon2-cffi-bindings==21.2.0 - # via argon2-cffi -certifi==2024.7.4 - # via - # httpcore - # httpx - # sentry-sdk -cffi==1.17.0 - # via argon2-cffi-bindings -click==8.1.7 - # via - # typer - # uvicorn -dnspython==2.7.0 - # via email-validator -email-validator==2.2.0 - # via fastapi -fastapi[standard]==0.115.2 - # via - # -r requirements/source/requirements-base.in - # sentry-sdk -fastapi-cli[standard]==0.0.5 - # via fastapi -greenlet==3.0.3 - # via sqlalchemy -h11==0.14.0 - # via - # httpcore - # uvicorn -httpcore==1.0.6 - # via httpx -httptools==0.6.1 - # via uvicorn -httpx==0.27.2 - # via fastapi -idna==3.7 - # via - # anyio - # email-validator - # httpx -jinja2==3.1.4 - # via fastapi -mako==1.3.5 - # via alembic -markdown-it-py==3.0.0 - # via rich -markupsafe==2.1.5 - # via - # jinja2 - # mako -mdurl==0.1.2 - # via markdown-it-py -passlib==1.7.4 - # via -r requirements/source/requirements-base.in -psycopg2-binary==2.9.9 - # via -r requirements/source/requirements-base.in -pycparser==2.22 - # via cffi -pydantic==2.8.2 - # via - # fastapi - # sqlmodel -pydantic-core==2.20.1 - # via pydantic -pygments==2.18.0 - # via rich -pyjwt==2.9.0 - # via -r requirements/source/requirements-base.in -python-dotenv==1.0.1 - # via uvicorn -python-multipart==0.0.12 - # via fastapi -pyyaml==6.0.2 - # via uvicorn -rich==13.9.2 - # via typer ruff==0.6.2 # via -r requirements/source/requirements-linting.in -sentry-sdk[fastapi]==2.11.0 - # via -r requirements/source/requirements-base.in -shellingham==1.5.4 - # via typer -sniffio==1.3.1 - # via - # anyio - # httpx -sqlalchemy[asyncio]==2.0.31 - # via - # -r requirements/source/requirements-base.in - # alembic - # alembic-postgresql-enum - # sqlmodel -sqlmodel==0.0.22 - # via -r requirements/source/requirements-base.in -starlette==0.40.0 - # via - # -r requirements/source/requirements-base.in - # fastapi -typer==0.12.5 - # via fastapi-cli -typing-extensions==4.12.2 - # via - # -r requirements/source/requirements-base.in - # alembic - # fastapi - # pydantic - # pydantic-core - # sqlalchemy - # typer -urllib3==2.2.2 - # via sentry-sdk -uvicorn[standard]==0.31.0 - # via - # fastapi - # fastapi-cli -uvloop==0.20.0 - # via uvicorn -watchfiles==0.24.0 - # via uvicorn -websockets==13.1 - # via uvicorn diff --git a/requirements/source/requirements-linting.in b/requirements/source/requirements-linting.in index 2328d8a6..fd192263 100644 --- a/requirements/source/requirements-linting.in +++ b/requirements/source/requirements-linting.in @@ -1,2 +1 @@ --r requirements-base.in ruff==0.6.2