Skip to content
master
Switch branches/tags
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
 
 
 
 
 
 
 
 
 
 
 
 
 
 

Code Climate Bandit Engine

Code Climate Engine to run Bandit.

Bandit is a tool designed to find common security issues in Python code.

Installation

git clone https://github.com/noqcks/codeclimate-bandit
cd codeclimate-bandit
make release

Usage

.codeclimate.yml

plugins:
  bandit:
    enabled: true
    config:
      python_version: 3

Python 2 or 3 currently supported.

NOTE: If you don't set a Python version, Python 3 will be used by default.

codeclimate analyze

Configuration

The engine supports the native config file for Bandit. You can select the specific test plugins to run and override default Bandit configuration using this file. More information on the config file can be found in the Bandit documentation.

A .bandit.yaml included at the root of your project will be included during engine run.

Example .bandit.yaml:

skips: ['B101', 'B601', 'B404']

TODO

  • support different locations of .bandit.yaml

About

A codeclimate engine for bandit.

Topics

Resources

License

Releases

No releases published

Packages

No packages published