mirror of
https://github.com/home-assistant/core
synced 2024-07-27 18:58:57 +02:00
d4c80f160c
* Add bandit to pre-commit and CI, use to catch known vulnerable XML parsing * Use defusedxml instead of direct xml.etree to parse XML * Move config to tests/bandit.yaml
34 lines
1004 B
YAML
34 lines
1004 B
YAML
# This configuration includes the default, minimal set of hooks to be
|
|
# run on all commits. It requires no specific setup and one can just
|
|
# start using pre-commit with it.
|
|
#
|
|
# See .pre-commit-config-all.yaml for a more complete one that comes
|
|
# with a better coverage at the cost of some specific setup needed.
|
|
|
|
repos:
|
|
- repo: https://github.com/psf/black
|
|
rev: 19.10b0
|
|
hooks:
|
|
- id: black
|
|
args:
|
|
- --safe
|
|
- --quiet
|
|
files: ^((homeassistant|script|tests)/.+)?[^/]+\.py$
|
|
- repo: https://gitlab.com/pycqa/flake8
|
|
rev: 3.7.9
|
|
hooks:
|
|
- id: flake8
|
|
additional_dependencies:
|
|
- flake8-docstrings==1.5.0
|
|
- pydocstyle==4.0.1
|
|
files: ^(homeassistant|script|tests)/.+\.py$
|
|
- repo: https://github.com/PyCQA/bandit
|
|
rev: 1.6.2
|
|
hooks:
|
|
- id: bandit
|
|
args:
|
|
- --quiet
|
|
- --format=custom
|
|
- --configfile=tests/bandit.yaml
|
|
files: ^(homeassistant|script|tests)/.+\.py$
|