search

department-of-veterans-affairs / abd-vro

To get Veterans benefits in minutes, VRO software uses health evidence data to help fast track disability claims.
Other
19 stars 6 forks source link

lib-hoppy: update/specify setuptools version to pass vulnerability scan #3200

Closed dfitchett closed 2 months ago

dfitchett commented 2 months ago

What was the problem?

Aqua-Gate check failing for EP Merge due to unspecified version of setuptools using an older version with a vulnerability.

Associated tickets or Slack threads:

How does this fix it?[^1]

Specify setuptools version, update description, and change required python version.

[^1]: Pull-Requests guidelines. If PR is significant, update Current Software State wiki page. [^secrel]: To check if a PR will succeed in the SecRel workflow, test PRs in the SecRel pipeline.

github-actions[bot] commented 2 months ago

Test Results

116 tests  ±0   116 :white_check_mark: ±0   35s :stopwatch: -1s  34 suites ±0     0 :zzz: ±0   34 files   ±0     0 :x: ±0 

Results for commit af8b72e2. ± Comparison against base commit cd2ac96b.

github-actions[bot] commented 2 months ago

JaCoCo Test Coverage

Overall Project 67.02% :x:

There is no coverage information present for the Files changed