1
0
mirror of https://github.com/openSUSE/osc.git synced 2024-12-26 18:06:13 +01:00

Merge pull request #142 from vpereira/master

added a simple way to verify osc code base with the python security scanner bandit
This commit is contained in:
Adrian Schröter 2015-08-13 07:51:29 +02:00
commit 3ec00b0f20

18
run_bandit.sh Executable file
View File

@ -0,0 +1,18 @@
#!/bin/bash
# you can pass as argument "csv","json" or "txt" (default)
if [ "$1" != "" ];then
OUTPUT=$1
else
OUTPUT="txt"
fi
# check if bandit is installed
command -v bandit >/dev/null 2>&1 || { echo "bandit should be installed. get the package from https://build.opensuse.org/package/show/home:vpereirabr/python-bandit. Aborting." >&2; exit 1; }
bandit -c /usr/etc/bandit/bandit.yaml -r osc -f $OUTPUT
if [ "$OUTPUT" == "csv" ];then
cat bandit_results.csv
rm -f bandit_results.csv
fi