Rework to use the debian docker based runner
All checks were successful
Bandit / audit-runtime-security (3.11) (pull_request) Successful in 10m5s
Flake8 / audit (3.11) (pull_request) Successful in 10m2s
Mypy / audit-typing (3.11) (pull_request) Successful in 11m3s
pip-audit / audit-dependency-security (3.11) (pull_request) Successful in 11m14s
Pylint / audit-runtime-security (3.11) (pull_request) Successful in 10m19s
All checks were successful
Bandit / audit-runtime-security (3.11) (pull_request) Successful in 10m5s
Flake8 / audit (3.11) (pull_request) Successful in 10m2s
Mypy / audit-typing (3.11) (pull_request) Successful in 11m3s
pip-audit / audit-dependency-security (3.11) (pull_request) Successful in 11m14s
Pylint / audit-runtime-security (3.11) (pull_request) Successful in 10m19s
This commit is contained in:
@ -1,17 +1,36 @@
|
||||
---
|
||||
name: Bandit
|
||||
on: [push]
|
||||
|
||||
on:
|
||||
push:
|
||||
branches: [main]
|
||||
pull_request:
|
||||
branches: [main]
|
||||
|
||||
# XXX need to do stuff with uv
|
||||
jobs:
|
||||
build:
|
||||
runs-on: freebsd
|
||||
audit-runtime-security:
|
||||
runs-on: ubuntu-latest
|
||||
strategy:
|
||||
matrix:
|
||||
python-version: ["3.11"]
|
||||
python-version:
|
||||
- "3.11"
|
||||
steps:
|
||||
- uses: actions/checkout@v4
|
||||
- name: Checkout repository
|
||||
uses: actions/checkout@v4
|
||||
|
||||
- name: Set up Python
|
||||
uses: actions/setup-python@v4
|
||||
with:
|
||||
python-version: '${{ matrix.python-version }}'
|
||||
cache: 'pip'
|
||||
cache-dependency-path: 'requirements.txt'
|
||||
|
||||
- name: Install dependencies
|
||||
run: |
|
||||
python -m pip install --upgrade pip
|
||||
python -m pip install --upgrade bandit
|
||||
pip install -r requirements.txt
|
||||
|
||||
- name: Analyse code with Bandit
|
||||
run: |
|
||||
bandit -r .
|
||||
|
||||
Reference in New Issue
Block a user