Summary
For making the task smaller, we initially put most of the logic into the workflow itself. It would be better, as we expect the logic to grow & for developers to also run it locally, if this core logic were put into a nox task.
For the nox session dependency:audit, it'd be nice if the CLI support --count and/or at the end output how many vulnerabilities were present. This relates a bit to the previous point, but it would also benefit developers when the resulting JSON is rather long.
Summary
For making the task smaller, we initially put most of the logic into the workflow itself. It would be better, as we expect the logic to grow & for developers to also run it locally, if this core logic were put into a nox task.
For the nox session
dependency:audit, it'd be nice if the CLI support--countand/or at the end output how many vulnerabilities were present. This relates a bit to the previous point, but it would also benefit developers when the resulting JSON is rather long.