ci(SECURITY): bypass 73282 sqlitedict cve

PI-Portal · Nov 27, 2024 · 0ce0f42 · 0ce0f42
1 parent b1b44b9
commit 0ce0f42
Show file tree

Hide file tree

Showing 2 changed files with 4 additions and 1 deletion.
diff --git a/.vale/Vocab/pi_portal/accept.txt b/.vale/Vocab/pi_portal/accept.txt
@@ -8,5 +8,6 @@ pi_portal
 pib_cli
 setuptools
 slack_cli
+sqlitedict
 xmlrpc
 zipp
diff --git a/assets/Makefile b/assets/Makefile
@@ -153,7 +153,9 @@ security-leaks:
 
 security-safety:
 	@echo "Checking all dependencies ..."
-	@$(call p, "pip freeze | safety check --stdin -i 70612")
+	@$(call p, "pip freeze | safety check --stdin -i 70612 -i 73282")
+	# 70612 - jinja2     - vulnerability requires externally supplied templates
+	# 73282 - sqlitedict - vulnerability is already managed by via securing access to the database
 	@echo "Done."
 
 spelling-add: