ci: split CI into separate files (#1552)

* ci: split CI into separate files

* trying to break old CI

* Fix long tests

* finally delete old file

* ci: specify Python version for conda

Author: Molkree

.github/workflows/cve_scan.yml

@@ -0,0 +1,36 @@
+name: CVE scan
+
+on:
+  push:
+  pull_request:
+  workflow_dispatch:
+
+jobs:
+  cve_scan:
+    name: CVE scan on dependencies
+    runs-on: ubuntu-latest
+    timeout-minutes: 10
+    steps:
+      - uses: actions/checkout@v2
+      - uses: actions/setup-python@v2
+        with:
+          cache: 'pip'
+          cache-dependency-path: '**/requirements.txt'
+      - name: Get date
+        id: get-date
+        run: |
+          echo "::set-output name=date::$(/bin/date -u "+%Y%m%d")"
+      - name: Get cached database
+        uses: actions/cache@v2
+        with:
+          path: ~/.cache/cve-bin-tool
+          key: ${{ runner.os }}-cve-bin-tool-${{ steps.get-date.outputs.date }}
+      - name: Install dependencies and cve-bin-tool
+        run: |
+          python -m pip install --upgrade pip
+          python -m pip install --upgrade setuptools
+          python -m pip install --upgrade wheel
+          pip install . -r doc/requirements.txt
+      - name: Test to check for CVEs for Python requirements and HTML report dependencies
+        run: |
+          pytest test/test_requirements.py

.github/workflows/linting.yml

@@ -0,0 +1,34 @@
+name: Linting
+
+on:
+  push:
+  pull_request:
+  workflow_dispatch:
+
+jobs:
+  linting:
+    name: Linting
+    runs-on: ubuntu-latest
+    strategy:
+      fail-fast: false
+      matrix:
+        tool: ['isort', 'black', 'pyupgrade', 'flake8', 'format_checkers', 'bandit']
+    steps:
+      - uses: actions/checkout@v2
+      - uses: actions/setup-python@v2
+        with:
+          cache: 'pip'
+      - name: Install pre-commit
+        run: |
+          python -m pip install --upgrade pip
+          python -m pip install --upgrade setuptools
+          python -m pip install --upgrade pre-commit
+          pre-commit install
+      - name: Install cve-bin-tool if needed
+        if: ${{ matrix.tool == 'format_checkers' }}
+        run: |
+          python -m pip install --upgrade wheel
+          python -m pip install .
+      - name: Run ${{ matrix.tool }}
+        run: |
+          pre-commit run ${{ matrix.tool }} --all-files