Revision 1b197e4dc6cef0ea09a9ed817a36f5decb778c58 authored by Roman Donchenko on 26 October 2023, 06:39:29 UTC, committed by GitHub on 26 October 2023, 06:39:29 UTC
The job spends about a minute downloading and loading the CVAT server image, but I don't think it's used at all.
1 parent c19ea38
bandit.yml
name: Bandit
on: pull_request
jobs:
Linter:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@v3
- id: files
uses: tj-actions/changed-files@v35.9.2
with:
files: |
**/*.py
files_ignore: |
**/cvat-sdk/*
- name: Run checks
run: |
CHANGED_FILES="${{steps.files.outputs.all_changed_files}}"
if [[ ! -z $CHANGED_FILES ]]; then
pipx install bandit
echo "Bandit version: "$(bandit --version | head -1)
echo "The files will be checked: "$(echo $CHANGED_FILES)
bandit -a file --ini .bandit $CHANGED_FILES
else
echo "No files with the \"py\" extension found"
fi
Computing file changes ...
