Skip to content

StacklokLabs/banditize

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits
.github/workflows
.github/workflows
 
 
.gitignore
.gitignore
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
go.mod
go.mod
 
 
main.go
main.go
 
 

Repository files navigation

banditize

PyCQA/bandit as a web service.

This is a small web service (designed to be run under Google Cloud Run or the like that wraps PyCQA/bandit in a JSON-based API. The input format is:

{
    "base": "... base64-encoded .tar.gz of the base filesystem ...",
    "head": "... base64-encoded .tar.gz of the proposed changed filesystem ..."
}

You may omit base to scan a directory from scratch.

In turn, this currently returns a single field, but we may expand it later:

{
    "simpleFindings": "... bandit output ..."
}

## Usage

To test on the command line in a python directory, you can do the following:

curl --data @<(echo "{"head":"$(tar -czf - . | base64 -i -)"}") http://localhost:7777/pull


## Deployment

This is also deployed on Google Cloud Run at the following URL via CI:

https://banditize-562949304223.us-central1.run.app/

About

PyCQA/bandit as a web service

Resources

Readme

License

Apache-2.0 license
Activity
Custom properties

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages