Merge pull request #388 from fedejaure/fix-security-issues

fix safety issues
fedejaure · Jan 11, 2025 · 09d545b · 09d545b
2 parents 270839b + a91d484
commit 09d545b
Show file tree

Hide file tree

Showing 5 changed files with 76 additions and 76 deletions.
diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml
@@ -39,10 +39,10 @@ jobs:
     strategy:
       matrix:
         distro:
-          - debian10
           - debian11
-          - ubuntu2004
+          - debian12
           - ubuntu2204
+          - ubuntu2404
       fail-fast: false
     steps:
       - uses: actions/checkout@v4

diff --git a/.safety-policy.yml b/.safety-policy.yml
@@ -6,10 +6,7 @@ security: # configuration for the `safety check` command
     ignore-cvss-unknown-severity: False # True or False. We recommend you set this to False.
     ignore-vulnerabilities: # Here you can list multiple specific vulnerabilities you want to ignore (optionally for a time period)
         # We recommend making use of the optional `reason` and `expires` keys for each vulnerability that you ignore.
-        70612:
-            reason: we do not use the vulnerable function
-            expires: '2025-10-10'
-        73302:
-            reason: we do not use the vulnerable function
-            expires: '2025-10-10'
+        # 70612:
+        #     reason: we do not use the vulnerable function
+        #     expires: '2025-10-10'
     continue-on-vulnerability-error: False # Suppress non-zero exit codes when vulnerabilities are found. Enable this in pipelines and CI/CD processes if you want to pass builds that have vulnerabilities
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -6,12 +6,12 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 ### Added
-- Debian `Bullseye` support.
-- Ubuntu `Jammy Jellyfish` support.
+- Debian `Bullseye` and `Bookworm` support.
+- Ubuntu `Jammy Jellyfish` and `Noble Numbat` support.
 
 ### Removed
-- Debian `Stretch` support.
-- Ubuntu `Bionic Beaver` support.
+- Debian `Stretch` and `buster` support.
+- Ubuntu `Bionic Beaver` and `Focal Fossa` support.
 
 ## [0.2.0] - 2023-04-10
 ### Changed

diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -13,7 +13,8 @@ package-mode = false
 
 [tool.poetry.dependencies]
 python = "<3.12,>=3.11"
-ansible = "^10.6.0"
+ansible = "^11.1.0"
+pylint = "^3.3.3"
 
 [tool.poetry.group.dev.dependencies]
 pre-commit = "^4.0.1"
@@ -43,7 +44,6 @@ flake8-annotations = "^2.9.1"
 flake8-docstrings = "^1.7.0"
 flake8-bandit = "^3.0.0"
 darglint = "^1.8.1"
-pylint = "^3.3.1"
 
 [tool.flakeheaven]
 format = "grouped"