add bandit code analysis

FynnBe · web-flow · commit 767bfc2a8be5 · 2025-01-08T17:02:53.000+01:00
diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
@@ -22,6 +22,15 @@ jobs:
           jupyter: true
           version: "24.3"
 
+  bandit:
+    needs: black
+    runs-on: ubuntu-latest
+    permissions:
+      security-events: write
+    steps:
+      - name: Perform Bandit Analysis
+        uses: PyCQA/bandit-action@v1
+
   test-spec-conda:
     runs-on: ubuntu-latest
     strategy:
