fix: fix lint

Author: DiogoRibeiro7

.github/workflows/security.yml

@@ -9,18 +9,38 @@ on:
 jobs:
   security:
     runs-on: ubuntu-latest
+
     steps:
       - uses: actions/checkout@v4
 
-      - name: Run Bandit security scan
+      # Use the same Python that your project targets
+      - name: Set up Python
+        uses: actions/setup-python@v5
+        with:
+          python-version: '3.10'
+
+      - name: Install Poetry
+        run: |
+          pipx install poetry
+          poetry --version
+
+      # Install project deps in Poetry venv (dev group included so scanners are available)
+      - name: Install dependencies with Poetry
         run: |
-          pip install bandit
-          bandit -r min_ratio_cycle/
+          poetry install --with dev --no-interaction --no-ansi
 
-      - name: Run Safety check
+      # --- Bandit: run in the project venv, tune failure level if desired ---
+      - name: Bandit (security linter)
         run: |
-          pip install safety
-          safety check
+          poetry run bandit -r min_ratio_cycle/ --severity-level medium --confidence-level high
 
-      - name: Dependency vulnerability scan
-        uses: pypa/[email protected]
+      # OPTION A: Safety scans the *installed* packages inside your Poetry venv
+      - name: Safety (scan installed env)
+        run: |
+          poetry run pip install --upgrade safety
+          poetry run safety check --full-report
+
+      - name: pip-audit (scan exported requirements, not global env)
+        run: |
+          pipx install pip-audit
+          pip-audit -r requirements.txt --strict