fix: resolve pytest CVE in security audit and improve audit output #5

Merged
meshflows merged 1 commit from fix/security-audit-pytest into main 2026-07-06 06:56:00 +00:00
Owner

Upgrade script-execution-service pytest to 9.0.3 (CVE-2025-71176) and make security-audit failures easier to spot with quieter pip-audit logging.

Co-authored-by: Cursor cursoragent@cursor.com

Upgrade script-execution-service pytest to 9.0.3 (CVE-2025-71176) and make security-audit failures easier to spot with quieter pip-audit logging. Co-authored-by: Cursor <cursoragent@cursor.com>
fix: resolve pytest CVE in security audit and improve audit output
Some checks failed
Build & Push Docker Images / Test Gate (push) Successful in 29s
Build & Push Docker Images / Build (dashboard) Engine Services [./engine/services/dashboard] (dashboard, ./engine/services/dashboard) (push) Successful in 25s
Test & Validate / Test Summary (push) Successful in 1s
Build & Push Docker Images / Build (ses) Engine Services [./engine/services/script-execution-service] (ses, ./engine/services/script-execution-service) (push) Successful in 38s
Build & Push Docker Images / Publish Release Bundle (push) Successful in 1s
Build & Push Docker Images / Resolve Auto-Deploy Targets (push) Successful in 1s
Build & Push Docker Images / Cleanup Container Packages (meshflows namespace) (push) Successful in 10s
Build & Push Docker Images / Deploy (dev) (dev) (push) Successful in 4s
Build & Push Docker Images / Build Summary (push) Successful in 1s
Build & Push Docker Images / Runner Preflight (pull_request) Successful in 1s
Build & Push Docker Images / Validate JavaScript Syntax (pull_request) Successful in 3s
Dependency Security Audit / Check Python Version Consistency (pull_request) Successful in 3s
Test & Validate / Validate Repository Structure (pull_request) Successful in 3s
Test & Validate / Test Engine Smoke Suite (pytest) (pull_request) Successful in 29s
Test & Validate / Validate Kubernetes Manifests (pull_request) Successful in 5s
Build & Push Docker Images / Test Gate (pull_request) Successful in 30s
Test & Validate / Validate Workflow YAML (pull_request) Successful in 14s
Build & Push Docker Images / Detect Changed Components (pull_request) Successful in 4s
Test & Validate / Test Summary (pull_request) Successful in 1s
Build & Push Docker Images / Build Forgejo Runner Image (pull_request) Has been skipped
Build & Push Docker Images / Build Wiki (MkDocs) (pull_request) Has been skipped
Build & Push Docker Images / Sync Wiki Docs to Forgejo Wiki (pull_request) Has been skipped
Build & Push Docker Images / Build (ses) Engine Services [./engine/services/script-execution-service] (ses, ./engine/services/script-execution-service) (pull_request) Successful in 38s
Dependency Security Audit / Check Dependencies (pull_request) Successful in 3m43s
Build & Push Docker Images / Publish Release Bundle (pull_request) Successful in 1s
Build & Push Docker Images / Cleanup Container Packages (meshflows namespace) (pull_request) Has been skipped
Build & Push Docker Images / Resolve Auto-Deploy Targets (pull_request) Successful in 1s
Build & Push Docker Images / Deploy (dev) (dev) (pull_request) Failing after 1s
Build & Push Docker Images / Deploy (tst) (tst) (pull_request) Failing after 1s
Build & Push Docker Images / Build Summary (pull_request) Successful in 1s
19ffad216a
Upgrade script-execution-service pytest to 9.0.3 (CVE-2025-71176) and make security-audit failures easier to spot with quieter pip-audit logging.

Co-authored-by: Cursor <cursoragent@cursor.com>
meshflows deleted branch fix/security-audit-pytest 2026-07-06 06:56:01 +00:00
Sign in to join this conversation.
No reviewers
No labels
No milestone
No project
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference
MeshFlowsGPL/meshflows!5
No description provided.