enpaul/tox-poetry-installer
1
0
Fork 0
mirror of https://github.com/enpaul/tox-poetry-installer.git synced 2025-12-19 12:02:34 +00:00
Code Issues Projects Releases Wiki Activity

Remove safety dependency vulnerability scanner

Browse Source 
I went back and fourth on this, but ultimately decided that it's more trouble
than it's worth. Between false positives, deeply nested packages raising
vulnerabilities, and the brittleness of the poetry-plugin-export that the
tooling relies on, it causes more headaches than it avoids. A future PR will
enable dependabot tooling that will open PRs to automatically fix this problem
so I don't have to deal with it anymore (hopefully)
This commit is contained in:
Ethan Paul
2024-08-16 13:26:12 -04:00
parent f66e59ab85
commit df343396a4
3 changed files with 1 additions and 70 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
pyproject.toml
View File

@@ -55,7 +55,6 @@ pylint = {version = "^2.13.0", python = "^3.10"}
pytest = {version = "^6.0.2", python = "^3.10"}
pytest-cov = {version = "^2.10.1", python = "^3.10"}
reorder-python-imports = {version = "^2.3.5", python = "^3.10"}
safety = {version = "^2.2.0", python = "^3.10"}
toml = {version = "^0.10.1", python = "^3.10"}
tox = "^4.1"
types-toml = {version = "^0.10.1", python = "^3.10"}