Add Bandit scan GitHub Action

Add a new section to the `README.md` file to explain how to use the Bandit scan GitHub Action. * Add an example of the GitHub Actions configuration for running a Bandit scan on a Python project. * Create a new GitHub Actions workflow file named `bandit-scan.yml`. * Add the provided GitHub Actions configuration for running a Bandit scan on a Python project. --- For more details, open the [Copilot Workspace session](https://copilot-workspace.githubnext.com/Setland34/eth.store?shareId=XXXX-XXXX-XXXX-XXXX).
Setland34 · Jan 23, 2025 · 14b9f29 · 14b9f29
1 parent 26a2968
commit 14b9f29
Show file tree

Hide file tree

Showing 2 changed files with 35 additions and 0 deletions.
diff --git a/.github/workflows/bandit-scan.yml b/.github/workflows/bandit-scan.yml
@@ -0,0 +1,14 @@
+name: Bandit Scan
+
+on: [push, pull_request]
+
+jobs:
+  bandit-scan:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Bandit Scan
+        uses: shundor/python-bandit-scan@9cc5aa4a006482b8a7f91134412df6772dbda22c
+        with:
+          exit_zero: true
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
diff --git a/README.md b/README.md
@@ -95,3 +95,24 @@ cat ./etsthore.json
 	}
 ]
 ```
+
+## Bandit Scan GitHub Action
+
+To use the Bandit scan GitHub Action for running a Bandit scan on a Python project, you can add the following configuration to your GitHub Actions workflow file:
+
+```yaml
+name: Bandit Scan
+
+on: [push, pull_request]
+
+jobs:
+  bandit-scan:
+    runs-on: ubuntu-latest
+    steps:
+      - uses: actions/checkout@v4
+      - name: Bandit Scan
+        uses: shundor/python-bandit-scan@9cc5aa4a006482b8a7f91134412df6772dbda22c
+        with:
+          exit_zero: true
+          GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+```