[Task] Run and record Python dependency vulnerability audit such as pip-audit #9

Closed
opened 2026-07-06 11:27:20 +02:00 by zemion · 1 comment
Owner

Imported from the consolidated GovOPlaN product backlog.

  • Source: /mnt/DATA/Nextcloud/ADD ideas UG/Products/govoplan/backlog.md
  • Line: 133
  • Section: Milestones > Milestone 7 - Privacy, Governance, And Security
  • Source status: PARTIAL.

Imported backlog item:

- [ ] Run and record Python dependency vulnerability audit such as `pip-audit`.
<!-- codex-backlog-fingerprint:643bbf79309465d2d43bca7e --> Imported from the consolidated GovOPlaN product backlog. - Source: `/mnt/DATA/Nextcloud/ADD ideas UG/Products/govoplan/backlog.md` - Line: `133` - Section: `Milestones > Milestone 7 - Privacy, Governance, And Security` - Source status: `PARTIAL.` Imported backlog item: ```markdown - [ ] Run and record Python dependency vulnerability audit such as `pip-audit`. ```
zemion added this to the Milestone 7 - Privacy, Governance, And Security milestone 2026-07-06 12:58:25 +02:00
zemion added the
priority
p2
label 2026-07-08 03:02:52 +02:00
Author
Owner

Closed as run-and-record, not remediated. Evidence: scripts/check-dependency-audits.sh ran python -m pip_audit --progress-spinner off; docs/audits/2026-07-09-dependency-audit.md records 24 Python advisories across cryptography, pip, python-multipart, pyzipper, and starlette. Remediation is now tracked in govoplan-core#226.

Closed as run-and-record, not remediated. Evidence: scripts/check-dependency-audits.sh ran python -m pip_audit --progress-spinner off; docs/audits/2026-07-09-dependency-audit.md records 24 Python advisories across cryptography, pip, python-multipart, pyzipper, and starlette. Remediation is now tracked in govoplan-core#226.
Sign in to join this conversation.
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: add-ideas/govoplan-core#9
No description provided.