Skip to content

Commit

Permalink
Add a pre-commit hook to run pip-audit
Browse files Browse the repository at this point in the history 
The pip-audit tool will audit any supplied pip requirements files for
vulnerable packages.
  • Loading branch information
@mcdonnnj
mcdonnnj committed Sep 25, 2024
1 parent e79569c commit 045a998
Showing 1 changed file with 12 additions and 0 deletions.
12 changes: 12 additions & 0 deletions .pre-commit-config.yaml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -145,6 +145,18 @@ repos:
rev: v1.8.0
hooks:
- id: mypy
- repo: https://github.com/pypa/pip-audit
rev: v2.7.3
hooks:
- id: pip-audit
args:
# Add any pip requirements files to scan
- --requirement
- requirements-dev.txt
- --requirement
- requirements-test.txt
- --requirement
- requirements.txt
- repo: https://github.com/asottile/pyupgrade
rev: v3.15.1
hooks:
Expand Down

0 comments on commit 045a998

Please sign in to comment.