jenstroeger / python-package-template

An opinionated Python package/application template repository, with SLSA and SBOM support built in, enabled for security scanners, code linters, typing, testing and code coverage monitoring, and release automation for reproducible builds.
MIT License
34 stars 11 forks source link

Fix code scanning alert - Pinned-Dependencies #270

Open behnazh opened 2 years ago

behnazh commented 2 years ago

Tracking issue for:

jenstroeger commented 2 years ago

I’m tempted to close the alert as False Positive or Won’t fix, see also https://github.com/ossf/scorecard/issues/2129.