update bandit config

collective · Oct 14, 2024 · 6c9e105 · 6c9e105
1 parent f37ba67
commit 6c9e105
Show file tree

Hide file tree

Showing 2 changed files with 55 additions and 11 deletions.
diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml
@@ -7,17 +7,17 @@ jobs:
  runs-on: ubuntu-latest
 
  steps:
- - uses: actions/checkout@v3
+  - uses: actions/checkout@v4
 
- - name: Security check - Bandit
- uses: ioggstream/bandit-report-artifacts@v0.0.2
- with:
- project_path: src
- ignore_failure: true
+  - name: Security check - Bandit
+  uses: ioggstream/bandit-report-artifacts@v1.7.4
+  with:
+  project_path: src
+  # ignore_failure: true
 
  # This is optional
- - name: Security check report artifacts
- uses: actions/upload-artifact@v1
- with:
- name: Security report
- path: output/security_report.txt
+ #- name: Security check report artifacts
+ # uses: actions/upload-artifact@v4
+ # with:
+ # name: Security report
+ # path: output/security_report.txt
diff --git a/test_plone60.cfg b/test_plone60.cfg
@@ -0,0 +1,44 @@
+[versions]
+build = 1.2.1
+cmarkgfm = 2024.1.14
+coverage = 7.5.4
+createcoverage = 1.5
+i18ndude = 6.2.1
+keyring = 25.2.1
+markdown-it-py = 3.0.0
+mdurl = 0.1.2
+nh3 = 0.2.17
+pkginfo = 1.10.0
+plone.recipe.codeanalysis = 3.0.1
+pyproject-hooks = 1.1.0
+readme-renderer = 43.0
+requests-toolbelt = 1.0.0
+rfc3986 = 2.0.0
+rich = 13.7.1
+twine = 5.1.1
+zest.releaser = 9.2.0
+
+# Required by:
+# jaraco.context==5.3.0
+backports.tarfile = 1.2.0
+
+# Required by:
+# plone.recipe.codeanalysis==3.0.1
+check-manifest = 0.49
+
+# Required by:
+# keyring==25.2.1
+jaraco.classes = 3.4.0
+
+# Required by:
+# keyring==25.2.1
+jaraco.context = 5.3.0
+
+# Required by:
+# keyring==25.2.1
+jaraco.functools = 4.0.1
+
+# Required by:
+# jaraco.classes==3.4.0
+# jaraco.functools==4.0.1
+more-itertools = 10.3.0