Skip to content

Commit cb42549

Browse files
committed
chore: Update bandit config
1 parent ea3c409 commit cb42549

File tree

3 files changed

+5
-2
lines changed

3 files changed

+5
-2
lines changed

.github/workflows/ci.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -57,7 +57,7 @@ jobs:
5757
rule: lint-types
5858
- name: Lint other metrics
5959
rule: lint-metrics
60-
- name: Scan AST security
60+
- name: Scan AST
6161
rule: scan-sec-ast
6262
- name: Scan dependencies
6363
rule: scan-sec-deps

justfile

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -97,7 +97,7 @@ scan-sec: scan-sec-ast scan-sec-deps
9797

9898
# Perform static security analysis on the AST.
9999
scan-sec-ast:
100-
bandit -r {{src-dir}}
100+
bandit -c pyproject.toml -r {{src-dir}}
101101

102102
# Scan dependencies for reported vulnerabilities.
103103
scan-sec-deps:

pyproject.toml

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -125,6 +125,9 @@ warn_unreachable = true
125125
allow_untyped_globals = false
126126
strict_equality = true
127127

128+
[tool.bandit]
129+
skips = ["B104", "B404", "B603"]
130+
128131
[tool.black]
129132
line-length = 88
130133
target-version = ["py312"]

0 commit comments

Comments
 (0)