chore: Fix datadog vulnerabilities (off-ticket)#1554
Conversation
…-tools into datadog_vulnerabilities
Dependency Review✅ No vulnerabilities or OpenSSF Scorecard issues found.Scanned FilesNone |
Signed-off-by: DBT pre-commit check
Signed-off-by: DBT pre-commit check
| - "terraform/postgres/manage_users.py" | ||
| - "dbt_platform_helper/providers/copilot.py" |
There was a problem hiding this comment.
Can we fix these rather than suppressing the alerts? Or at least put a ticket on the backlog to come back to them?
There was a problem hiding this comment.
The warning for manage_users is a false positive. All of the copilot commands are no longer used the long term fix would be to remove them all, I'll check if there is a ticket for that cleanup task.
Signed-off-by: DBT pre-commit check
Signed-off-by: DBT pre-commit check
|
Your PR has commits that are missing the Signed-off-by trailer. This is likely due to the pre-commit hook not being configured on your local machine. The usual fix for this issue is to run |
Addresses critical and high vulnerabilities reported in DataDog
Checklist:
Title:
feat: Add new feature (DBTP-1234)orchore: Correct typo (off-ticket)Description:
Tasks:
Reviewer Checklist