Merge pull request #49 from febus982/update-bootstrap

Port bootstrap repository CI improvements

Author: febus982

.bandit.yml

@@ -0,0 +1,6 @@
+version: "2"
+plugins:
+  bandit:
+    enabled: true
+  sonar-python:
+    enabled: true

.codeclimate.yml

@@ -0,0 +1,16 @@
+name: Deploy static content to Pages
+
+on:
+  push:
+    branches: ["main"]
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+
+
+jobs:
+  site:
+    permissions:
+      contents: write
+    uses: ./.github/workflows/reusable-github-pages.yml
+    with:
+      site-version: "dev"

.coveragerc

@@ -0,0 +1,32 @@
+# This workflow will install Python dependencies, run tests and lint with a variety of Python versions
+# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-python
+
+name: Bandit checks
+
+on:
+  push:
+    branches: [ "main" ]
+  pull_request:
+    branches: [ "main" ]
+  # Allows you to run this workflow manually from the Actions tab
+  workflow_dispatch:
+
+jobs:
+  bandit:
+    runs-on: ubuntu-latest
+
+    steps:
+    - uses: actions/checkout@v3
+
+    - name: Security check - Bandit
+      uses: ioggstream/[email protected]
+      with:
+        project_path: .
+        config_file: .bandit.yml
+
+    # This is optional
+    - name: Security check report artifacts
+      uses: actions/upload-artifact@v1
+      with:
+        name: Security report
+        path: output/security_report.txt