Skip to content

:octocat: Github action to run PyCQA's bandit security linter.

License

Notifications You must be signed in to change notification settings

tj-actions/bandit

Use this GitHub action with your project
Add this Action to an existing workflow or create a new one
View on Marketplace

Repository files navigation

Ubuntu Public workflows that use this action.

Codacy Badge CI Update release version.

All Contributors

bandit

bandit is a security linter from PyCQA

Usage

Minimal version

...
    steps:
      - uses: actions/checkout@v2
      - name: Run bandit
        uses: tj-actions/bandit@v5.1

Using inputs

...
    steps:
      - uses: actions/checkout@v2
      - name: Run bandit
        uses: tj-actions/bandit@v5.1
        with:
          targets: |  # or a single string "." 
            test_package
          options: "-r"

If you feel generous and want to show some extra appreciation:

Support this project with a ⭐

Buy me a coffee

Inputs

INPUT TYPE REQUIRED DEFAULT DESCRIPTION
options string false "-r" Extra options passed directly to
bandit. See: OPTIONS.md for available choices
targets string true "." Module(s)/Package(s) to run bandit checks

Example

Screen Shot 2021-09-05 at 8 59 35 PM

Credits

This package was created with Cookiecutter.

Report Bugs

Report bugs at https://github.com/tj-actions/bandit/issues.

If you are reporting a bug, please include:

  • Your operating system name and version.
  • Any details about your workflow that might be helpful in troubleshooting.
  • Detailed steps to reproduce the bug.

TODO

  • Add support for running action on Windows, Mac OS

Contributors ✨

Thanks goes to these wonderful people (emoji key):


tlacroix

💻

This project follows the all-contributors specification. Contributions of any kind welcome!