Skip to content

Merge pull request #229 from spdx/dependabot/github_actions/pypa/gh-a… #347

Merge pull request #229 from spdx/dependabot/github_actions/pypa/gh-a…

Merge pull request #229 from spdx/dependabot/github_actions/pypa/gh-a… #347

Workflow file for this run

name: bandit-security-linter
on:
push:
branches:
- main
pull_request:
branches:
- main
permissions:
contents: read
jobs:
bandit:
runs-on: ubuntu-latest
steps:
- uses: actions/checkout@11bd71901bbe5b1630ceea73d27597364c9af683 # v2
- name: Run bandit
uses: tj-actions/bandit@0aed5b3da320e0f26781e5aecbbfc1d268ff07e2 # v5.5
with:
options: "-c bandit.yml -r"