feat: Add bandit ci pipeline (#1200)

* feat: Add bandit ci pipeline * feat: add useforsecurty false for bandit pipeline * feat: Add report only for High severity issues
2025-12-15 20:08:29 +00:00 · 2024-08-15 18:19:57 -03:00
parent 92a77e5cac
commit d0707fac91
5 changed files with 29 additions and 3 deletions
--- a/.github/workflows/security-checker.yml
+++ b/.github/workflows/security-checker.yml
@@ -0,0 +1,23 @@
+name: Security Checker
+
+on: [pull_request]
+
+jobs:
+  security-check:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+
+      - name: Set up Python
+        uses: actions/setup-python@v4
+        with:
+          python-version: "3.11.9"
+
+      - name: Install dependencies
+        run: pip install bandit
+
+      - name: Run Bandit
+        run: bandit -c pyproject.toml -r src/ -lll
+