mirror of
https://github.com/crewAIInc/crewAI.git
synced 2025-12-16 04:18:35 +00:00
92d71f7f06
chore(dev): update tooling & CI workflows - Upgrade ruff, mypy (strict), pre-commit; add hooks, stubs, config consolidation - Add bandit to dev deps and update uv.lock - Enhance ruff rules (modern Python style, B006 for mutable defaults) - Update workflows to use uv, matrix strategy, and changed-file type checking - Include tests in type checking; fix job names and add summary job for branch protection
30 lines
595 B
YAML
30 lines
595 B
YAML
name: Security Checker
|
|
|
|
on: [pull_request]
|
|
|
|
jobs:
|
|
security-check:
|
|
runs-on: ubuntu-latest
|
|
|
|
steps:
|
|
- name: Checkout code
|
|
uses: actions/checkout@v4
|
|
|
|
- name: Install uv
|
|
uses: astral-sh/setup-uv@v6
|
|
with:
|
|
enable-cache: true
|
|
cache-dependency-glob: |
|
|
**/pyproject.toml
|
|
**/uv.lock
|
|
|
|
- name: Set up Python
|
|
run: uv python install 3.11
|
|
|
|
- name: Install dependencies
|
|
run: uv sync --dev --no-install-project
|
|
|
|
- name: Run Bandit
|
|
run: uv run bandit -c pyproject.toml -r src/ -ll
|
|
|