From 4a7e04b39d834749d341b2493a931a9abd5535cc Mon Sep 17 00:00:00 2001 From: Olivier DEBAUCHE Date: Tue, 25 Jun 2024 19:37:54 +0200 Subject: [PATCH] Delete .github/workflows/bandit.yml --- .github/workflows/bandit.yml | 53 ------------------------------------ 1 file changed, 53 deletions(-) delete mode 100644 .github/workflows/bandit.yml diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml deleted file mode 100644 index a5f76515..00000000 --- a/.github/workflows/bandit.yml +++ /dev/null @@ -1,53 +0,0 @@ -name: Bandit Security Scan - -on: - push: - branches: [ "master" ] - pull_request: - # The branches below must be a subset of the branches above - branches: [ "master" ] - schedule: - - cron: '30 3 * * *' - -concurrency: - group: bandit-${{ github.event_name == 'pull_request' && format('{0}-{1}', github.workflow, github.event.pull_request.number) || github.workflow_ref }} - cancel-in-progress: true - -permissions: - contents: read - -jobs: - bandit-security-scan: - permissions: - contents: read # for actions/checkout to fetch code - security-events: write # for github/codeql-action/upload-sarif to upload SARIF results - actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status - name: Bandit Security Scan - runs-on: ubuntu-latest - steps: - # Checkout the repository to the GitHub Actions runner - - name: Checkout code - uses: actions/checkout@v4 - - - name: Set up Python - uses: actions/setup-python@v5 - with: - python-version: 3.12 - - - name: Install dependencies - run: | - python -m pip install --upgrade pip - python -m pip install uv - python -m uv pip install bandit[sarif] - python -m uv pip install -r requirements.txt - - # Execute Bandit - - name: Run Bandit CLI - run: | - bandit -r . -v --format sarif -o results.sarif - - # Upload the SARIF file generated in the previous step - - name: Upload SARIF results file - uses: github/codeql-action/upload-sarif@v3 - with: - sarif_file: results.sarif