From 05c0e76dc68ac0a62ef4ba47c1e1ace855053a1d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Adri=C3=A1n=20Chaves?= <adrian@chaves.io>
Date: Thu, 14 Nov 2019 12:24:42 +0100
Subject: [PATCH] Add bandit to CI

---
 .bandit.yml |  2 ++
 .travis.yml | 15 +++++++++------
 tox.ini     |  6 ++++++
 3 files changed, 17 insertions(+), 6 deletions(-)
 create mode 100644 .bandit.yml

diff --git a/.bandit.yml b/.bandit.yml
new file mode 100644
index 0000000..7fcde04
--- /dev/null
+++ b/.bandit.yml
@@ -0,0 +1,2 @@
+skips:
+- B101
diff --git a/.travis.yml b/.travis.yml
index 69ecf93..dbf5885 100644
--- a/.travis.yml
+++ b/.travis.yml
@@ -1,10 +1,13 @@
 language: python
-python:
-- '2.7'
-- '3.4'
-- '3.5'
-- '3.6'
-- '3.7'
+matrix:
+  include:
+    - env: TOXENV=security
+      python: 3.8
+    - python: 2.7
+    - python: 3.4
+    - python: 3.5
+    - python: 3.6
+    - python: 3.7
 install:
 - pip install -r tests/requirements.txt -e .
 script:
diff --git a/tox.ini b/tox.ini
index 32136a0..4db8e7c 100644
--- a/tox.ini
+++ b/tox.ini
@@ -7,3 +7,9 @@ deps=
 
 commands =
     py.test --cov-report term --cov=cssselect
+
+[testenv:security]
+deps =
+    bandit
+commands =
+    bandit -r -c .bandit.yml {posargs:cssselect}