Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Pre-commit hook runs bandit #45

Merged
merged 4 commits into from
Apr 28, 2021
Merged

Pre-commit hook runs bandit #45

merged 4 commits into from
Apr 28, 2021

Conversation

thekaveman
Copy link
Member

@thekaveman thekaveman commented Apr 27, 2021

Bandit looks for common security issues by analyzing python code.

Exclude the test server directory since this is not part of any production deployment, and is meant for local testing only. The exclusion is done via pre-commit's exclude key, since the action runs pre-commit with --all-files and Bandit's exclude doesn't take effect when given an explicit list of files to check. See PyCQA/bandit#499 and https://stackoverflow.com/a/61046953

exclude the test server directory
@thekaveman thekaveman added this to the April 2021 milestone Apr 27, 2021
@thekaveman thekaveman merged commit 16e5ea8 into main Apr 28, 2021
@thekaveman thekaveman deleted the bandit branch April 28, 2021 16:08
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant