Add a new workflow for code scanning

[yunchu]

Description

• Provide a summary of the modification as well as the issue that has been resolved. List any dependencies that this modification necessitates.

• Fixes # (issue)

Changes

• Bug fix (non-breaking change which fixes an issue)
• Refactor (non-breaking change which refactors the code base)
• New feature (non-breaking change which adds functionality)
• Breaking change (fix or feature that would cause existing functionality to not work as expected)
• This change requires a documentation update

Checklist

• My code follows the pre-commit style and check guidelines of this project.
• I have performed a self-review of my code
• I have commented my code, particularly in hard-to-understand areas
• I have made corresponding changes to the documentation
• My changes generate no new warnings
• I have added tests that prove my fix is effective or that my feature works
• New and existing tests pass locally with my changes
• I have added a summary of my changes to the CHANGELOG (not for minor changes, docs and tests).

[samet-akcay]

Thanks!

Would be for another PR, but I was wondering if we should we add bandit to pre-commit settings as well?

[yunchu]

Thanks!

Would be for another PR, but I was wondering if we should we add bandit to pre-commit settings as well?

It's good to have but we need the report of the bandit scan as a file for some release process so I think it would be added to this workflow as an additional job.

[samet-akcay]

Thanks!
Would be for another PR, but I was wondering if we should we add bandit to pre-commit settings as well?

It's good to have but we need the report of the bandit scan as a file for some release process so I think it would be added to this workflow as an additional job.

Yeah, that makes sense, thanks!

[codecov]

Codecov Report

Patch coverage: 94.73% and no project coverage change

Comparison is base (1407cfc) 86.77% compared to head (0d90d34) 86.77%.

Additional details and impacted files

@@           Coverage Diff           @@
##             main     #940   +/-   ##
=======================================
  Coverage   86.77%   86.77%           
=======================================
  Files         165      165           
  Lines        6319     6322    +3     
=======================================
+ Hits         5483     5486    +3     
  Misses        836      836           

Impacted Files	Coverage Δ
...ib/models/components/feature_extractors/torchfx.py	92.98% <94.73%> (+0.38%)	⬆️

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.