r3pek/log4j-affected-db
1
0
Fork 0
mirror of https://github.com/cisagov/log4j-affected-db.git synced 2024-11-22 08:30:48 +00:00
Code Releases Activity

Add a configuration file for Bandit, and configure pre-commit to use it.

Browse source
This commit is contained in:
Felddy 2019-05-03 16:49:35 -04:00
parent e24cfc6daf
commit 6a64a512e4
2 changed files with 14 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

12
.bandit.yml Normal file
View file

@ -0,0 +1,12 @@
# Configuration file for the Bandit python security scanner
# https://bandit.readthedocs.io/en/latest/config.html
# Test are first included by `tests`, and then excluded by `skips`.
# If `tests` is empty, all tests are are considered included.
tests:
#- B101
#- B102
skips:
#- B101 # skip "assert used" check since assertions are required in pytests

2
.pre-commit-config.yaml
View file

@ -52,6 +52,8 @@ repos:
rev: 2a1dbab
hooks:
- id: bandit
args:
- --config=.bandit.yml
- repo: https://github.com/ambv/black
rev: 19.3b0
hooks: