From 8aa19807f1abf2303524e3b901ad0d77df8805cd Mon Sep 17 00:00:00 2001
From: Carlo Costino <carlo.costino@gsa.gov>
Date: Fri, 22 Nov 2024 10:51:14 -0500
Subject: [PATCH] Add redis ID to ignore vulnerability list in pip-audit

This changeset adds a Python vulnerability that we need to ignore because it was incorrectly applied to the Python Redis module.  This is a vulnerability with an older version of Redis itself, not the Python module.

Signed-off-by: Carlo Costino <carlo.costino@gsa.gov>
---
 .github/workflows/checks.yml | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/.github/workflows/checks.yml b/.github/workflows/checks.yml
index 8324e6053..5244276bd 100644
--- a/.github/workflows/checks.yml
+++ b/.github/workflows/checks.yml
@@ -90,6 +90,8 @@ jobs:
       - uses: pypa/gh-action-pip-audit@v1.0.8
         with:
           inputs: requirements.txt
+          ignore-vulns: |
+            PYSEC-2022-43162
 
   static-scan:
     runs-on: ubuntu-latest