Skip to content

Merge pull request #681 from NebraLtd/dependabot/pip/werkzeug-3.0.6 #835

Merge pull request #681 from NebraLtd/dependabot/pip/werkzeug-3.0.6

Merge pull request #681 from NebraLtd/dependabot/pip/werkzeug-3.0.6 #835

name: Code Security Audit
on: [push, pull_request]
jobs:
build:
runs-on: ubuntu-20.04
steps:
- uses: actions/checkout@v3
- name: Set up Python 3.11
uses: actions/setup-python@v4
with:
python-version: 3.11
- name: Install apt dependencies
run: sudo apt-get update && sudo apt-get install libdbus-1-dev libdbus-glib-1-dev python3-dev
- name: Install poetry
uses: abatilo/actions-poetry@v2
with:
poetry-version: 1.4.2
- name: Install dependencies
run: |
poetry install --with dev
- name: Run bandit against code base
run: |
poetry run bandit -r hw_diag -c pyproject.toml