Skip to content

Test migrate datadog_checks_dev into ddev#22969

Draft
steveny91 wants to merge 1 commit intomasterfrom
sy/decouple-ddev
Draft

Test migrate datadog_checks_dev into ddev#22969
steveny91 wants to merge 1 commit intomasterfrom
sy/decouple-ddev

Conversation

@steveny91
Copy link
Contributor

@steveny91 steveny91 commented Mar 18, 2026

What does this PR do?

WIP test migration

@github-actions
Copy link
Contributor

github-actions bot commented Mar 18, 2026

Dependency Review

The following issues were found:
  • ❌ 2 vulnerable package(s)
  • ✅ 0 package(s) with incompatible licenses
  • ✅ 0 package(s) with invalid SPDX license definitions
  • ⚠️ 23 package(s) with unknown licenses.
See the Details below.

Vulnerabilities

ddev/pyproject.toml

NameVersionVulnerabilitySeverity
black23.12.1Black: Arbitrary file writes from unsanitized user input in cache file namehigh
virtualenv< 20.22.0virtualenv allows command injection through activation scripts for a virtual environmenthigh
Only included vulnerabilities with severity high or higher.

License Issues

ddev/pyproject.toml

PackageVersionLicenseIssue Type
virtualenv< 20.22.0NullUnknown License
aiohttpNullUnknown License
aiomultiprocessNullUnknown License
atomicwritesNullUnknown License
build>= 0.7.0NullUnknown License
codespellNullUnknown License
coloramaNullUnknown License
datamodel-code-generatorNullUnknown License
jsonschemaNullUnknown License
markdownNullUnknown License
orjsonNullUnknown License
packagingNullUnknown License
pathspec>= 0.10.0NullUnknown License
pip-toolsNullUnknown License
platformdirs>= 2.0.0a3NullUnknown License
pydantic>= 2.0.2NullUnknown License
pyyaml>= 5.4.1NullUnknown License
securesystemslibNullUnknown License
semver>= 2.13.0NullUnknown License
tabulate>= 0.8.9NullUnknown License
toml>= 0.9.4,< 1.0.0NullUnknown License
tox>= 3.12.1,< 4.0.0NullUnknown License
twine>= 1.11.0NullUnknown License

OpenSSF Scorecard

Scorecard details
PackageVersionScoreDetails
pip/black 23.12.1 UnknownUnknown
pip/virtualenv < 20.22.0 UnknownUnknown
pip/aiohttp UnknownUnknown
pip/aiomultiprocess UnknownUnknown
pip/atomicwrites UnknownUnknown
pip/beautifulsoup4 4.12.3 UnknownUnknown
pip/build >= 0.7.0 UnknownUnknown
pip/codespell UnknownUnknown
pip/colorama UnknownUnknown
pip/datamodel-code-generator UnknownUnknown
pip/in-toto 2.0.0 UnknownUnknown
pip/jsonschema UnknownUnknown
pip/markdown UnknownUnknown
pip/orjson UnknownUnknown
pip/packaging UnknownUnknown
pip/pathspec >= 0.10.0 UnknownUnknown
pip/pip-tools UnknownUnknown
pip/platformdirs >= 2.0.0a3 UnknownUnknown
pip/pydantic >= 2.0.2 UnknownUnknown
pip/pysmi 1.6.2 UnknownUnknown
pip/pyyaml >= 5.4.1 UnknownUnknown
pip/securesystemslib UnknownUnknown
pip/semver >= 2.13.0 UnknownUnknown
pip/tabulate >= 0.8.9 UnknownUnknown
pip/toml >= 0.9.4,< 1.0.0 UnknownUnknown
pip/towncrier 23.11.0 UnknownUnknown
pip/tox >= 3.12.1,< 4.0.0 UnknownUnknown
pip/twine >= 1.11.0 UnknownUnknown

Scanned Files

  • ddev/pyproject.toml

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

changelog/no-changelog ddev release

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@steveny91