Skip to content

Commit

Permalink
Reduced safety ignore rules to minimum; Added comments to safety files
Browse files Browse the repository at this point in the history 
Signed-off-by: Andreas Maier <maiera@de.ibm.com>
  • Loading branch information
@andy-maier
andy-maier committed Mar 21, 2024
1 parent cf15a30 commit 6e22d85
Show file tree
Hide file tree
Showing 2 changed files with 10 additions and 92 deletions.
94 changes: 7 additions & 87 deletions .safety-policy-all.yml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,12 @@
# Safety policy file
# Safety policy file for packages needed for development.
# For documentation, see https://docs.pyup.io/docs/safety-20-policy-file

# Note: This policy file is used against the versions in minimum-constraints.txt
# That file includes minimum-constraints-install.txt with '-c'. Since that is
# not supported and ignored by the safety tool, this policy file ends up being
# checked just against the minimum versions for development, without install.
# That's ok since the 'install' safety profile checks the install packages.

# Configuration for the 'safety check' command
security:

Expand All @@ -24,94 +30,8 @@ security:
# reason: {text} # optional: Reason for ignoring it. Will be reported in the Safety reports
# expires: {date} # optional: Date when this ignore will expire
ignore-vulnerabilities:
37504:
reason: Fixed Twine version requires Python>=3.6 and is used there
38330:
reason: Fixed Sphinx version requires Python>=3.5 and is used there
39611:
reason: PyYAML full_load method or FullLoader is not used
39621:
reason: Fixed Pylint version requires Python>=3.6 and is used there
40291:
reason: Fixed Pip version requires Python>=3.6 and is used there
40380:
reason: Fixed Notebook version requires Python>=3.6 and is used there
40381:
reason: Fixed Notebook version requires Python>=3.6 and is used there
40383:
reason: Fixed Notebook version requires Python>=3.6 and is used there
40384:
reason: Fixed Notebook version requires Python>=3.6 and is used there
40385:
reason: Fixed Notebook version requires Python>=3.6 and is used there
40386:
reason: Fixed Notebook version requires Python>=3.6 and is used there
42253:
reason: Fixed Notebook version requires Python>=3.6 and is used there
42254:
reason: Fixed Notebook version requires Python>=3.6 and is used there
42559:
reason: Fixed Pip version requires Python>=3.6 and is used there; Pip is not shipped with this package
43975:
reason: Fixed Urllib3 versions are excluded by requests
44634:
reason: Fixed Ipython version requires Python>=3.3 and is used there
45185:
reason: Fixed Pylint version requires Python>=3.6.2 and is used there
45775:
reason: Fixed Sphinx version requires Python>=3.5 and is used there
50463:
reason: Fixed Ipywidgets version requires Python>=3.7 and is used there
50664:
reason: Fixed Ipywidgets version requires Python>=3.7 and is used there
50792:
reason: Fixed Nbconvert version requires Python>=3.7 and is used there
50885:
reason: Fixed Pygments version requires Python>=3.5 and is used there
50886:
reason: Fixed Pygments version requires Python>=3.5 and is used there
51457:
reason: Py package is no longer being fixed (latest version 1.11.0)
51499:
reason: Fixed Wheel version requires Python>=3.7 and is used there; Risk is on Pypi side
52322:
reason: Fixed GitPython version requires Python>=3.7 and is used there
52365:
reason: Fixed Certifi version requires Python>=3.6 and is used there
52495:
reason: Fixed Setuptools version requires Python>=3.7 and is used there; Risk is on Pypi side
52518:
reason: Fixed GitPython version requires Python>=3.7 and is used there
53269:
reason: Fixed Ipython version 8.1.0 cannot be used without major work on dependencies; Risk is minimal since this is used only in development
54687:
reason: Fixed pywin32 version 301 requires Python>=3.5 and is used there
54717:
reason: Fixed jupyter-core version 4.11.2 requires Python>=3.7 and is used there
54713:
reason: Fixed notebook version 6.4.10 requires Python>=3.6 and is used there
54684:
reason: Fixed notebook version 6.4.12 requires Python>=3.7 and is used there
54678:
reason: Fixed notebook version 5.7.8 only works on Python>=3.6 and is used there
54682:
reason: Fixed notebook version 5.5.0 only works on Python>=3.6 and is used there
54689:
reason: Fixed notebook version 5.7.11 only works on Python>=3.6 and is used there
58755:
reason: Fixed requests version 2.31.0 requires Python>=3.7 and is used there
58910:
reason: Fixed pygments version 2.15.0 requires Python>=3.7 and is used there
59956:
reason: Fixed certifi version 2023.07.22 requires Python>=3.6 and is used there
60350:
reason: Fixed GitPython version 3.1.32 requires Python>=3.7 and is used there
60789:
reason: Fixed GitPython version 3.1.33 requires Python>=3.7 and is used there
60841:
reason: Fixed GitPython version 3.1.34 requires Python>=3.7 and is used there
62044:
reason: Fixed pip version 23.3 requires Python>=3.7 and is used there
64227:
reason: Fixed Jinja2 version 3.1.3 requires Python>=3.7 and is used there

Expand Down
8 changes: 3 additions & 5 deletions .safety-policy-install.yml
View file
Original file line number Diff line number Diff line change
@@ -1,6 +1,8 @@
# Safety policy file
# Safety policy file for packages needed for installation.
# For documentation, see https://docs.pyup.io/docs/safety-20-policy-file

# Note: This policy file is used against the versions in minimum-constraints-install.txt.

# Configuration for the 'safety check' command
security:

Expand Down Expand Up @@ -32,10 +34,6 @@ security:
reason: Fixed Setuptools version requires Python>=3.7 and is used there; Risk is on Pypi side
58755:
reason: Fixed requests version 2.31.0 requires Python>=3.7 and is used there
61601:
reason: Fixed urllib3 version 1.26.17 requires Python>=3.6 and is used there
61893:
reason: Fixed urllib3 version 1.26.18 requires Python>=3.6 and is used there
62044:
reason: Fixed pip version 23.3 requires Python>=3.7 and is used there

Expand Down

0 comments on commit 6e22d85

Please sign in to comment.