GitHub Action to run a security scan using bandit

cclauss · cclauss · commit 84381fec14bb · 2021-09-03T08:26:36.000+02:00
diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml
@@ -0,0 +1,10 @@
+name: bandit
+on: [pull_request, push]
+jobs:
+  bandit:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v2
+      - uses: actions/setup-python@v2
+      - run: pip install bandit
+      - run: bandit --recursive  --skip B101,B104,B105,B110,B307,B311,B404,B603,B607 .
