Potential fix for code scanning alert no. 1: SQL query built from user-controlled sources #127

	# This workflow will install Python dependencies, run tests and lint with a variety of Python versions
	# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-python

	name: Pytest

	on:
	push:
	branches: [ "master" ]
	pull_request:
	branches: [ "master" ]

	jobs:

	container-job:
	# Containers must run in Linux based operating systems
	runs-on: ubuntu-latest
	timeout-minutes: 10
	strategy:
	matrix:
	python-version: ["3.11", "3.12"]

	# Service containers to run with `container-job`
	services:
	# Label used to access the service container
	postgres:
	# Docker Hub image
	image: postgres
	ports:
	- 5432:5432
	env:
	# Provide the password for postgres
	POSTGRES_PASSWORD: postgres
	# Set health checks to wait until postgres has started
	options: >-
	--health-cmd pg_isready
	--health-interval 10s
	--health-timeout 5s
	--health-retries 5

	steps:
	- name: Check out repository code
	uses: actions/checkout@v3

	- name: Set up Python ${{ matrix.python-version }}
	uses: actions/setup-python@v4
	with:
	python-version: ${{ matrix.python-version }}
	cache: 'pip'
	cache-dependency-path: 'requirements.txt'

	- name: Install dependencies
	run: \|
	python -m pip install --upgrade pip
	python -m pip install pytest
	if [ -f requirements.txt ]; then pip install -r requirements.txt; fi

	- name: Run tests with pytest
	run: \|
	cp tests/config.py.github hevelius/config.py
	set
	PGPASSWORD=postgres python -m pytest -s -v

Provide feedback