Docker Bandit SAST (Static Application Security Testing) for python projects and DevSecOps pipelines
Bandit: SAST (Static Application Security Testing) for python projects
Simple Bandit docker image/container to run static security tests on python project in stand-alone mode, ideal for integration into a DevSecOps pipelines:
docker build -t davarski/bandit -f Dockerfile .
docker login
docker push davarski/bandit
docker run -u root --rm -v YOUR_PYTHON_PROJECT_PATH:/app davarski/bandit bandit -r ./
//help
docker run -u root --rm -v YOUR_PYTHON_PROJECT_PATH:/app davarski/bandit bandit -h