Code Climate Bandit Engine

Code Climate Engine to run Bandit.

Bandit is a tool designed to find common security issues in Python code.

Installation

git clone https://github.com/noqcks/codeclimate-bandit
cd codeclimate-bandit
make release

Usage

.codeclimate.yml

plugins:
  bandit:
    enabled: true

And then run the engine:

codeclimate analyze

Configuration

The engine supports the native config file for Bandit. You can select the specific test plugins to run and override default Bandit configuration using this file. More information on the config file can be found in the Bandit documentation.

A .bandit.yaml included at the root of your project will be included during engine run.

Example .bandit.yaml:

skips: ['B101', 'B601', 'B404']

TODO

support different locations of .bandit.yaml

Name		Name	Last commit message	Last commit date
Latest commit History 20 Commits
.bandit.yaml		.bandit.yaml
.codeclimate.yml		.codeclimate.yml
.dockerignore		.dockerignore
Dockerfile		Dockerfile
LICENSE		LICENSE
Makefile		Makefile
README.md		README.md
engine.json		engine.json
requirements.txt		requirements.txt
run.py		run.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

Code Climate Bandit Engine

Installation

Usage

Configuration

TODO

About

Releases

Packages

Contributors 2

Languages

License

noqcks/codeclimate-bandit

Folders and files

Latest commit

History

Repository files navigation

Code Climate Bandit Engine

Installation

Usage

Configuration

TODO

About

Topics

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Contributors 2

Languages

Packages