Create bandit-security-check-python-agents-api.yml (#534)

- **Workflow Addition**: - Adds `bandit-security-check-python-agents-api.yml` to `.github/workflows/`. - Triggers on pull requests to the `main` branch. - **Security Check**: - Uses `mdegis/[email protected]` to check Python code in `./agents-api/agents_api`. - Configured with `level: high` and `confidence: high`. - `exit_zero: true` allows workflow to pass even if issues are found.
julep-ai · Sep 30, 2024 · 9668b75 · 9668b75
1 parent 076a8dc
commit 9668b75
Showing 1 changed file with 18 additions and 0 deletions.
diff --git a/.github/workflows/bandit-security-check-python-agents-api.yml b/.github/workflows/bandit-security-check-python-agents-api.yml
@@ -0,0 +1,18 @@
+on:
+  pull_request:
+    branches:
+    - main
+
+jobs:
+  bandit_check:
+    name: bandit check security of python code in agents-api
+    runs-on: ubuntu-latest
+
+    steps:
+    - uses: mdegis/[email protected]
+      with:
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        path: "./agents-api/agents_api"
+        level: high
+        confidence: high
+        # exit_zero: true