Spaces:
Sleeping
Sleeping
gary-boon
Claude Opus 4.5
commited on
Commit
·
ba27c0c
1
Parent(s):
1b73605
fix: Skip heavy ML deps in CI security checks
Browse filesSecurity scanning tools (Snyk, Bandit, Safety) don't need torch/
transformers installed - they do static analysis of code and
requirements.txt. Installing torch>=2.3 with CUDA deps was
exhausting CI disk space (~3GB+).
🤖 Generated with [Claude Code](https://claude.com/claude-code)
Co-Authored-By: Claude Opus 4.5 <[email protected]>
.github/workflows/security-check.yml
CHANGED
|
@@ -22,7 +22,9 @@ jobs:
|
|
| 22 |
- name: Install dependencies
|
| 23 |
run: |
|
| 24 |
python -m pip install --upgrade pip
|
| 25 |
-
|
|
|
|
|
|
|
| 26 |
|
| 27 |
# Run Snyk security scan
|
| 28 |
- name: Run Snyk Security Scan
|
|
|
|
| 22 |
- name: Install dependencies
|
| 23 |
run: |
|
| 24 |
python -m pip install --upgrade pip
|
| 25 |
+
# Only install lightweight deps for security scanning
|
| 26 |
+
# ML packages (torch, transformers) are skipped - not needed for static analysis
|
| 27 |
+
pip install fastapi uvicorn pydantic python-dotenv aiofiles
|
| 28 |
|
| 29 |
# Run Snyk security scan
|
| 30 |
- name: Run Snyk Security Scan
|