Enabled safety check for unpinned requirements

andy-maier · andy-maier · commit 2d2373b2f26b · 2026-02-10T06:33:37.000+01:00
Signed-off-by: Andreas Maier &lt;andreas.r.maier@gmx.de&gt;
diff --git a/.safety-policy-develop.yml b/.safety-policy-develop.yml
@@ -17,6 +17,12 @@ security:
     # Should be set to False.
     ignore-cvss-unknown-severity: False
 
+    # Ignore unpinned requirements
+    # Default is true. "Unpinned" in this case means anything else but "==".
+    # Since we are checking against the minimum-constraints file, this check
+    # is enabled (false).
+    ignore-unpinned-requirements: false
+
     # List of specific vulnerabilities to ignore.
     # {id}:                 # vulnerability ID
     #     reason: {text}    # optional: Reason for ignoring it. Will be reported in the Safety reports
diff --git a/.safety-policy-install.yml b/.safety-policy-install.yml
@@ -17,6 +17,12 @@ security:
     # Should be set to False.
     ignore-cvss-unknown-severity: False
 
+    # Ignore unpinned requirements
+    # Default is true. "Unpinned" in this case means anything else but "==".
+    # Since we are checking against the minimum-constraints file, this check
+    # is enabled (false).
+    ignore-unpinned-requirements: false
+
     # List of specific vulnerabilities to ignore.
     # {id}:                 # vulnerability ID
     #     reason: {text}    # optional: Reason for ignoring it. Will be reported in the Safety reports
