chore: 🤖 ignore vulnerability

there is no patched version at the moment, so... ignoring to pass the CI

.github/workflows/_quality-python.yml

@@ -54,7 +54,7 @@ jobs:
         run: poetry run bandit -r src
       - name: Run pip-audit (datasets worker)
         if: ${{ inputs.is-datasets-worker == true }}
-        run: bash -c "poetry run pip-audit  --ignore-vuln GHSA-47fc-vmwq-366v -r <(poetry export -f requirements.txt --with dev | sed '/^pymongo==/,+109 d' | sed '/^requests==2.28.1 ;/,+2 d' | sed '/^kenlm @/d' | sed '/^trec-car-tools @/d')"
+        run: bash -c "poetry run pip-audit  --ignore-vuln GHSA-47fc-vmwq-366v --ignore-vuln GHSA-hcpj-qp55-gfph -r <(poetry export -f requirements.txt --with dev | sed '/^pymongo==/,+109 d' | sed '/^requests==2.28.1 ;/,+2 d' | sed '/^kenlm @/d' | sed '/^trec-car-tools @/d')"
       - name: Run pip-audit
         if: ${{ inputs.is-datasets-worker == false && inputs.is-library-with-pymongo == false }}
         run: bash -c "poetry run pip-audit -r <(poetry export -f requirements.txt --with dev | sed '/^pymongo==/,+109 d')"

workers/datasets_based/Makefile

@@ -16,6 +16,6 @@ run:
 
 .PHONY: pip-audit
 pip-audit:
-	bash -c "poetry run pip-audit --ignore-vuln GHSA-47fc-vmwq-366v -r <(poetry export -f requirements.txt --with dev | sed '/^pymongo==/,+109 d' | sed '/^requests==2.28.1 ;/,+2 d' | sed '/^kenlm @/d' | sed '/^trec-car-tools @/d')"
+	bash -c "poetry run pip-audit --ignore-vuln GHSA-47fc-vmwq-366v --ignore-vuln GHSA-hcpj-qp55-gfph -r <(poetry export -f requirements.txt --with dev | sed '/^pymongo==/,+109 d' | sed '/^requests==2.28.1 ;/,+2 d' | sed '/^kenlm @/d' | sed '/^trec-car-tools @/d')"
 # ^ we remove problematic lines to have a working pip-audit. See https://github.com/pypa/pip-audit/issues/84#issuecomment-1326203111 for "requests"
 # ^ we also ignore GHSA-47fc-vmwq-366v vulnerability because it has no fix for the moment