RHAIENG-304, RHAIENG-786: chore(ci): don't activate the uv env in security.yaml, turns out rabbit was on the right track (opendatahub-io#2223)

jiridanek · web-flow · commit f5b3bebd5e41 · 2025-08-29T18:34:36.000+02:00
* opendatahub-io#2217 (comment)
diff --git a/.github/workflows/security.yaml b/.github/workflows/security.yaml
@@ -16,17 +16,17 @@ jobs:
       security-events: write
     steps:
 
-      - name: Checkout code
-        uses: actions/checkout@v5
-
       # https://github.com/astral-sh/setup-uv
       - name: Install the latest version of uv
         uses: astral-sh/setup-uv@v6
         with:
           version: "latest"
-          python-version: "3.12"
+          activate-environment: false
+          ignore-empty-workdir: true
           enable-cache: false
-          activate-environment: true
+
+      - name: Checkout code
+        uses: actions/checkout@v5
 
       # Trivy does not support pylock.toml https://github.com/aquasecurity/trivy/discussions/9408
       - run: find . -name pyproject.toml -execdir uv lock \;
