diff --git a/.github/workflows/bandit.yml b/.github/workflows/bandit.yml index ceaaff5..0fbde1f 100644 --- a/.github/workflows/bandit.yml +++ b/.github/workflows/bandit.yml @@ -31,22 +31,13 @@ jobs: steps: - uses: actions/checkout@v2 - name: Bandit Scan - uses: shundor/python-bandit-scan@9cc5aa4a006482b8a7f91134412df6772dbda22c + uses: shundor/python-bandit-scan@v1.0 with: # optional arguments # exit with 0, even with results found exit_zero: true # optional, default is DEFAULT # Github token of the repository (automatically created by Github) GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }} # Needed to get PR information. # File or directory to run bandit on - # path: # optional, default is . - # Report only issues of a given severity level or higher. Can be LOW, MEDIUM or HIGH. Default is UNDEFINED (everything) - # level: # optional, default is UNDEFINED - # Report only issues of a given confidence level or higher. Can be LOW, MEDIUM or HIGH. Default is UNDEFINED (everything) - # confidence: # optional, default is UNDEFINED - # comma-separated list of paths (glob patterns supported) to exclude from scan (note that these are in addition to the excluded paths provided in the config file) (default: .svn,CVS,.bzr,.hg,.git,__pycache__,.tox,.eggs,*.egg) - # excluded_paths: # optional, default is DEFAULT - # comma-separated list of test IDs to skip - # skips: # optional, default is DEFAULT - # path to a .bandit file that supplies command line arguments - # ini_path: # optional, default is DEFAULT - + path: "." + level: high + confidence: high diff --git a/.github/workflows/generatepyattckdata.yml b/.github/workflows/generatepyattckdata.yml index e776463..e7cab0e 100644 --- a/.github/workflows/generatepyattckdata.yml +++ b/.github/workflows/generatepyattckdata.yml @@ -40,18 +40,7 @@ jobs: cd data_collector poetry config virtualenvs.create false poetry install - poetry run pip install -r ../requirements.txt poetry run python run.py - # - name: Generate ATTCK Data - # env: - # GH_TOKEN: ${{ secrets.GITHUB_TOKEN }} - # run: | - # cd .. - # poetry run pip install --upgrade pip - # poetry run pip install PyGithub>=1.55 - # poetry run pip install deep-translator - # poetry install - # poetry run python run.py - name: Configure AWS Credentials uses: aws-actions/configure-aws-credentials@v1 with: diff --git a/.github/workflows/release.yml b/.github/workflows/release.yml index 0486875..452d8d8 100644 --- a/.github/workflows/release.yml +++ b/.github/workflows/release.yml @@ -28,12 +28,12 @@ jobs: - name: Set up Python uses: actions/setup-python@v4 with: - python-version: "3.10" + python-version: "3.11" if: ${{ steps.release.outputs.release_created }} - name: Set up poetry uses: abatilo/actions-poetry@v2.3.0 with: - poetry-version: 1.3.2 + poetry-version: 1.5.1 if: ${{ steps.release.outputs.release_created }} - name: Publish run: | diff --git a/.github/workflows/tests.yml b/.github/workflows/tests.yml index 136084c..b2b7e34 100644 --- a/.github/workflows/tests.yml +++ b/.github/workflows/tests.yml @@ -11,10 +11,10 @@ jobs: fail-fast: false matrix: include: + - { python: "3.11", os: "ubuntu-latest", session: "tests" } - { python: "3.10", os: "ubuntu-latest", session: "tests" } - { python: "3.9", os: "ubuntu-latest", session: "tests" } - { python: "3.8", os: "ubuntu-latest", session: "tests" } - - { python: "3.7", os: "ubuntu-latest", session: "tests" } env: NOXSESSION: ${{ matrix.session }} FORCE_COLOR: "1" @@ -45,7 +45,7 @@ jobs: - name: Install Poetry run: | - pipx install poetry + curl -sSL https://install.python-poetry.org | python3 - poetry --version - name: Install Nox @@ -106,7 +106,7 @@ jobs: - name: Set up Python uses: actions/setup-python@v4 with: - python-version: "3.10" + python-version: "3.11" - name: Upgrade pip run: | @@ -115,7 +115,7 @@ jobs: - name: Install Poetry run: | - pipx install poetry + curl -sSL https://install.python-poetry.org | python3 - poetry --version - name: Install Nox