chore: run pip-audit on ci

inimaz · inimaz · commit e9c227c4c57a · 2026-01-18T11:26:49.000+01:00
diff --git a/.github/workflows/pre-commit.yml b/.github/workflows/pre-commit.yml
@@ -24,3 +24,11 @@ jobs:
       run: |
         pip install pre-commit==3.7.0
         pre-commit run --show-diff-on-failure --color=always --all-files
+  pip-audit:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v4.2.2
+      - name: Install dependencies
+        run: uv sync --all-groups && uv add --dev pip-audit
+      - name: Run pip-audit
+        run: uv run pip-audit   # Will fail if vulnerabilities are found
