Skip to content

Commit d639745

Browse files
lemur47lemur47
authored
Merge pull request #63 from lemur47/chore/uv-lock-refresh
chore: refresh uv.lock and tolerate pytest CVE pending companion PR
2 parents a07548c + bf941a0 commit d639745

2 files changed

Lines changed: 40 additions & 35 deletions

File tree

osv-scanner.toml

Lines changed: 5 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -10,3 +10,8 @@
1010
[[IgnoredVulns]]
1111
id = "GHSA-5239-wwwm-4pmq"
1212
reason = "Low-severity pygments issue (CVSS 3.3), no fix available upstream"
13+
14+
[[IgnoredVulns]]
15+
id = "GHSA-6w46-j5rx-g56g"
16+
ignoreUntil = 2026-04-21
17+
reason = "Temporary ignore — pytest 9.0.2 → 9.0.3 handled in companion PR B (feature/pytest-cve-bump). PR A (chore/uv-lock-refresh) cannot bump pytest without reintroducing the 4-package constraint-satisfaction drift. PR B removes this entry. CTO-approved sequence (Pre-Sprint 4 pytest CVE WI, 18 Apr)."

uv.lock

Lines changed: 35 additions & 35 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)