fix(ci): temporarily ignore GHSA-4xh5-x5gv-qwph (CVE-2025-8869) until pip fixes the problem (#1018)

Author: jenstroeger

Makefile

@@ -141,13 +141,14 @@ requirements.txt: pyproject.toml
 # Audit the currently installed packages. Skip packages that are installed in
 # editable mode (like the one in development here) because they may not have
 # a PyPI entry; also print out CVE description and potential fixes if audit
-# found an issue.
+# found an issue. Note that we temporarily ignore GHSA-4xh5-x5gv-qwph until the
+# issue is resolved: https://github.com/pypa/pip/issues/13607
 .PHONY: audit
 audit:
 	if ! $$(python -c "import pip_audit" &> /dev/null); then \
 	  echo "No package pip_audit installed, upgrade your environment!" && exit 1; \
 	fi;
-	python -m pip_audit --skip-editable --desc on --fix --dry-run
+	python -m pip_audit --skip-editable --desc on --fix --dry-run --ignore-vuln GHSA-4xh5-x5gv-qwph
 
 # Run some or all checks over the package code base.
 .PHONY: check check-code check-bandit check-flake8 check-lint check-mypy check-actionlint