mirrors/github.com_openSUSE_osc
1
0
Fork 0
mirror of https://github.com/openSUSE/osc.git synced 2024-11-09 22:36:14 +01:00
Code

added a simple way to verify osc code base with the python security scanner bandit

Browse Source
This commit is contained in:
Victor Pereira 2015-04-08 10:02:10 +02:00
parent 40f4a61cbc
commit 6368761b04
1 changed files with 18 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
run_bandit.sh Executable file
View File

@ -0,0 +1,18 @@
#!/bin/bash
# you can pass as argument "csv","json" or "txt" (default)
if [ "$1" != "" ];then
OUTPUT=$1
else
OUTPUT="txt"
fi
# check if bandit is installed
command -v bandit >/dev/null 2>&1 || { echo "bandit should be installed. get the package from https://build.opensuse.org/package/show/home:vpereirabr/python-bandit. Aborting." >&2; exit 1; }
bandit -c /usr/etc/bandit/bandit.yaml -r osc -f $OUTPUT
if [ "$OUTPUT" == "csv" ];then
cat bandit_results.csv
rm -f bandit_results.csv
fi