mirror of
https://github.com/katanemo/plano.git
synced 2026-04-27 01:36:33 +02:00
38646fdac2
* Add Trivy Docker image security scan workflow Scans the Docker image for CRITICAL and HIGH vulnerabilities using Trivy. Blocks PRs on failures; runs non-blocking on main for visibility. Results are uploaded to the GitHub Security tab via SARIF. * Add explicit permissions to Docker security scan workflow Set minimal permissions: contents read for checkout, security-events write for SARIF upload to the GitHub Security tab. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Fix 27 HIGH vulnerabilities found by Trivy Docker scan - Install supervisor via pip instead of apt to eliminate 22 Debian python3.13 package vulnerabilities - Pin urllib3>=2.6.3 to fix CVE-2025-66418, CVE-2025-66471, CVE-2026-21441 - Add ignore-unfixed to Trivy scan to suppress unfixable glibc CVE-2026-0861 Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
49 lines
972 B
TOML
49 lines
972 B
TOML
[project]
|
|
name = "planoai"
|
|
version = "0.4.6"
|
|
description = "Python-based CLI tool to manage Plano."
|
|
authors = [{name = "Katanemo Labs, Inc."}]
|
|
readme = "README.md"
|
|
requires-python = ">=3.10"
|
|
dependencies = [
|
|
"click>=8.1.7,<9.0.0",
|
|
"grpcio>=1.60.0",
|
|
"jinja2>=3.1.4,<4.0.0",
|
|
"jsonschema>=4.23.0,<5.0.0",
|
|
"opentelemetry-proto>=1.20.0",
|
|
"questionary>=2.1.1,<3.0.0",
|
|
"pyyaml>=6.0.2,<7.0.0",
|
|
"requests>=2.31.0,<3.0.0",
|
|
"urllib3>=2.6.3",
|
|
"rich>=14.2.0",
|
|
"rich-click>=1.9.5",
|
|
]
|
|
|
|
[project.optional-dependencies]
|
|
dev = [
|
|
"pytest>=8.4.1,<9.0.0",
|
|
]
|
|
|
|
[project.scripts]
|
|
planoai = "planoai.main:main"
|
|
|
|
[build-system]
|
|
requires = ["hatchling"]
|
|
build-backend = "hatchling.build"
|
|
|
|
[tool.hatch.version]
|
|
path = "planoai/__init__.py"
|
|
|
|
[tool.hatch.build.targets.wheel]
|
|
packages = ["planoai"]
|
|
|
|
[tool.hatch.build.targets.sdist]
|
|
include = ["planoai/**"]
|
|
|
|
[tool.pytest.ini_options]
|
|
addopts = ["-v"]
|
|
|
|
[dependency-groups]
|
|
dev = [
|
|
"pytest>=8.4.2",
|
|
]
|