From 5e2817fb736c407bad87777ad31022428ca63bea Mon Sep 17 00:00:00 2001
From: behnazh-w <behnaz.hassanshahi@oracle.com>
Date: Mon, 14 Aug 2023 11:02:08 +1000
Subject: [PATCH] chore(deps): ignore GHSA-pr76-5cm5-w9cj until PyDriller
 updates GitPython

See https://github.com/ishepard/pydriller/issues/280

Signed-off-by: behnazh-w <behnaz.hassanshahi@oracle.com>
---
 Makefile | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/Makefile b/Makefile
index 3aa50f3fe..c0a40a0f4 100644
--- a/Makefile
+++ b/Makefile
@@ -225,12 +225,14 @@ requirements.txt: pyproject.toml
 # editable mode (like the one in development here) because they may not have
 # a PyPI entry; also print out CVE description and potential fixes if audit
 # found an issue.
+# TODO: do not ignore GHSA-pr76-5cm5-w9cj once the patch is out.
+# See: https://github.com/ishepard/pydriller/issues/280
 .PHONY: audit
 audit:
 	if ! $$(python -c "import pip_audit" &> /dev/null); then \
 	  echo "No package pip_audit installed, upgrade your environment!" && exit 1; \
 	fi;
-	python -m pip_audit --skip-editable --desc on --fix --dry-run
+	python -m pip_audit --skip-editable --desc on --fix --dry-run --ignore-vuln GHSA-pr76-5cm5-w9cj
 
 # Run some or all checks over the package code base.
 .PHONY: check check-code check-bandit check-flake8 check-lint check-mypy check-go check-actionlint