deps(deps): update safety requirement from >=2.0.0 to >=3.7.0 #56
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Code Quality | |
| on: | |
| push: | |
| branches: | |
| - main | |
| - develop | |
| - 'feature/**' | |
| pull_request: | |
| branches: | |
| - main | |
| - develop | |
| - 'feature/**' | |
| jobs: | |
| quality: | |
| runs-on: ubuntu-latest | |
| steps: | |
| - uses: actions/checkout@v6 | |
| - name: Set up Python | |
| uses: actions/setup-python@v6 | |
| with: | |
| python-version: "3.10" | |
| - name: Install dependencies | |
| run: | | |
| python -m pip install --upgrade pip | |
| pip install -e ".[dev]" | |
| - name: Run pre-commit hooks | |
| run: | | |
| pip install pre-commit | |
| pre-commit run --all-files | |
| - name: Security check with bandit | |
| run: | | |
| pip install bandit | |
| bandit -r profile_config/ -f json -o bandit-report.json || true | |
| bandit -r profile_config/ -f txt || true | |
| - name: Upload bandit report | |
| if: always() | |
| uses: actions/upload-artifact@v6 | |
| with: | |
| name: bandit-report | |
| path: bandit-report.json | |
| if-no-files-found: warn | |
| - name: Check package build | |
| run: | | |
| pip install build | |
| python -m build | |
| pip install twine | |
| twine check dist/* | |
| - name: Test package installation | |
| run: | | |
| pip install dist/*.whl | |
| python -c "import profile_config; print('Package installed successfully')" |