chore(security): Remove safety check ignores as they are fixed (#9752)

2026-01-25 02:08:11 +00:00 · 2026-01-12 12:02:22 +01:00
parent 5f2cb614ad
commit 9ee77c2b97
2 changed files with 5 additions and 5 deletions
--- a/.github/workflows/api-security.yml
+++ b/.github/workflows/api-security.yml
@@ -60,9 +60,7 @@ jobs:

      - name: Safety
        if: steps.check-changes.outputs.any_changed == 'true'
-        # 76352, 76353, 77323 come from SDK, but they cannot upgrade it yet. It does not affect API
-        # TODO: Botocore needs urllib3 1.X so we need to ignore these vulnerabilities 77744,77745. Remove this once we upgrade to urllib3 2.X
-        run: poetry run safety check --ignore 70612,66963,74429,76352,76353,77323,77744,77745
+        run: poetry run safety check

      - name: Vulture
        if: steps.check-changes.outputs.any_changed == 'true'
--- a/.github/workflows/sdk-security.yml
+++ b/.github/workflows/sdk-security.yml
@@ -30,7 +30,9 @@ jobs:
        id: check-changes
        uses: tj-actions/changed-files@e0021407031f5be11a464abee9a0776171c79891 # v47.0.1
        with:
-          files: ./**
+          files: 
+            ./**
+            .github/workflows/sdk-security.yml
          files_ignore: |
            .github/**
            prowler/CHANGELOG.md
@@ -70,7 +72,7 @@ jobs:

      - name: Security scan with Safety
        if: steps.check-changes.outputs.any_changed == 'true'
-        run: poetry run safety check --ignore 70612 -r pyproject.toml
+        run: poetry run safety check -r pyproject.toml

      - name: Dead code detection with Vulture
        if: steps.check-changes.outputs.any_changed == 'true'