pip-audit 2.10.0

v2.10.0

on Python PyPI

Added

• pip-audit now supports the --osv-url URL flag, which can be used to
  retrieve vulnerabilities from a custom OSV service. This is useful for
  organizations that host their own mirror of the OSV database, or that
  have custom OSV records
  (#810)

• pip-audit now supports the Ecosyste.ms vulnerability service with
  --vulnerability-service=esms
  (#903).

Changed

• The minimum version of Python is now 3.10
  (#905)

Fixed

• Fixed a bug where pip-audit would fail to parse pyproject.toml files
  containing TOML 1.0.0 features
  (#910)

• CycloneDX JSON/XML output now correctly links vulnerabilities to their
  affected components via the affects field
  (#980)