redis · chayim · Jul 11, 2023 · Jul 11, 2023 · Jul 11, 2023 · Jul 11, 2023
diff --git a/.github/dependabot.yml b/.github/dependabot.yml
@@ -7,13 +7,13 @@ updates:
     labels:
       - dependencies
     schedule:
-      interval: "daily"
+      interval: "weekly"
 
   # Maintain dependencies for Python
   - package-ecosystem: "pip"
     directory: "/"
     labels:
       - dependencies
     schedule:
-      interval: "daily"
+      interval: "weekly"
     open-pull-requests-limit: 10
diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml
@@ -20,31 +20,6 @@ env:
 
 jobs:
 
-  dependency-audit:
-    name: Dependency audit
-    runs-on: ubuntu-latest
-    steps:
-      - uses: actions/checkout@v3
-      - name: install python
-        uses: actions/setup-python@v4
-        with:
-          python-version: ${{env.pythonversion}}
-      - name: create local poetry install
-        run: |
-            python -m venv .venv
-            source .venv/bin/activate
-            pip install --upgrade pip setuptools
-            python -m pip install poetry
-            poetry install
-      - uses: trailofbits/[email protected]
-        with:
-          virtual-environment: .venv
-          ignore-vulns: |
-            GHSA-w596-4wvx-j9j6 # subversion related git dep, dependency for pytest. This is no impact here.
-            GHSA-2p9h-ccw7-33gf # invalid ddos comment on the cleo package
-            GHSA-hcpj-qp55-gfph
-            GHSA-29gw-9793-fvw7 # ipython test dep, not in release
-
   lint:
     name: Linter
     runs-on: ubuntu-latest