[pre-commit.ci] pre-commit autoupdate #446
Workflow file for this run
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: code checks | |
| permissions: | |
| contents: read | |
| pull-requests: write | |
| on: | |
| push: | |
| branches: | |
| - main | |
| paths: | |
| - .pre-commit-config.yaml | |
| - .github/workflows/code_checks.yml | |
| - '**.py' | |
| - uv.lock | |
| - pyproject.toml | |
| - '**.ipynb' | |
| pull_request: | |
| branches: | |
| - main | |
| paths: | |
| - .pre-commit-config.yaml | |
| - .github/workflows/code_checks.yml | |
| - '**.py' | |
| - uv.lock | |
| - pyproject.toml | |
| - '**.ipynb' | |
| jobs: | |
| run-code-check: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v6.0.2 | |
| - name: Install uv | |
| uses: astral-sh/setup-uv@08807647e7069bb48b6ef5acd8ec9567f424441b | |
| with: | |
| # Install a specific version of uv. | |
| version: "0.9.22" | |
| enable-cache: true | |
| - name: "Set up Python" | |
| uses: actions/setup-python@a309ff8b426b58ec0e2a45f0f869d46889d02405 | |
| with: | |
| python-version-file: ".python-version" | |
| - name: Install dependencies and check code | |
| run: | | |
| uv venv .venv | |
| source .venv/bin/activate | |
| uv sync --all-extras --dev | |
| pre-commit run --all-files | |
| - name: pip-audit (gh-action-pip-audit) | |
| uses: pypa/gh-action-pip-audit@1220774d901786e6f652ae159f7b6bc8fea6d266 | |
| with: | |
| virtual-environment: .venv/ | |
| # Skipping one nbconvert vulnerability that has no fix version | |
| # Skipping one orjson vulnerability that has no fix version | |
| # Skipping one protobuf vulnerability that has no fix version | |
| # Skipping one pygments vulnerability that has no fix version | |
| # Skipping gradio vulnerability (PYSEC-2024-274): disputed, no fix version available | |
| # Skipping joblib vulnerability (PYSEC-2024-277): disputed, no fix version available | |
| # Skipping markdown vulnerability (PYSEC-2026-89): no fix version available on PyPI | |
| # Skipping pyjwt vulnerability (PYSEC-2025-183): disputed, no fix version available | |
| # Skipping transformers vulnerabilities (PYSEC-2025-211 through 218): no fix version available | |
| ignore-vulns: | | |
| GHSA-xm59-rqc7-hhvf | |
| GHSA-hx9q-6w63-j58v | |
| GHSA-7gcm-g887-7qv7 | |
| CVE-2026-4539 | |
| PYSEC-2024-274 | |
| PYSEC-2024-277 | |
| PYSEC-2026-89 | |
| PYSEC-2025-183 | |
| PYSEC-2025-211 | |
| PYSEC-2025-212 | |
| PYSEC-2025-213 | |
| PYSEC-2025-214 | |
| PYSEC-2025-215 | |
| PYSEC-2025-216 | |
| PYSEC-2025-217 | |
| PYSEC-2025-218 |