Merge pull request #17 from nationalarchives/fix-python-app-check

Fix python app check workflow
nationalarchives · Oct 25, 2023 · 2b5f70d · 2b5f70d
2 parents e194a9d + 2abc5b9
commit 2b5f70d
Show file tree

Hide file tree

Showing 2 changed files with 6 additions and 3 deletions.
diff --git a/.github/workflows/python-app.yml b/.github/workflows/python-app.yml
@@ -11,7 +11,7 @@ jobs:
     runs-on: ubuntu-latest
     strategy:
       matrix:
-        python-version: ["3.8", "3.9", "3.10", "3.11"]
+        python-version: ["3.11"]
 
     steps:
       - uses: actions/checkout@v3
@@ -27,9 +27,9 @@ jobs:
       - name: Check dependencies for known security vulnerabilities
         run: safety check -r requirements.txt
       - name: Check code for potential security vulnerabilities
-        run: bandit -r .
+        run:  bandit -c pyproject.toml -r .
       - name: Check code formatting
-        run: black . -l 120 --check
+        run: black . --check
       - name: Lint with flake8
         run: |
           # stop the build if there are Python syntax errors or undefined names

diff --git a/pyproject.toml b/pyproject.toml
@@ -5,6 +5,9 @@ description = ""
 authors = ["Your Name <[email protected]>"]
 readme = "README.md"
 
+[tool.bandit]
+exclude_dirs = ['*_test.py', '*/test_*.py', 'venv']
+
 [tool.poetry.dependencies]
 python = "^3.11"
 cssmin = "0.2.0"