Skip to content

Commit a3301a2

Browse files
authored
ci: export sarif report for all level of severity (#32)
1 parent c31fb5a commit a3301a2

3 files changed

Lines changed: 10 additions & 2 deletions

File tree

action.yml

Lines changed: 0 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -63,7 +63,6 @@ runs:
6363
uses: lhoupert/bandit-action@18022d5292d04b21fae1bfa44597b94402ba7365
6464
with:
6565
targets: ${{ steps.resolve-targets.outputs.targets }}
66-
severity: ${{ inputs.bandit_severity_threshold }}
6766

6867
- name: Set up uv
6968
uses: astral-sh/setup-uv@37802adc94f370d6bfd71619e3f0bf239e1f3b78 # v7.6.0

tests/test_report.py

Lines changed: 9 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -173,6 +173,15 @@ def test_markdown_bandit_table(bandit_issues: dict[str, Any], pip_clean: list[An
173173
assert "src/app.py" in md
174174

175175

176+
def test_markdown_below_threshold_summary(
177+
bandit_issues: dict[str, Any], pip_clean: list[Any]
178+
) -> None:
179+
"""With threshold=HIGH, MEDIUM findings appear as below-threshold note."""
180+
s = Settings()
181+
md = build_markdown(bandit_issues, pip_clean, s)
182+
assert "1 medium issue(s) below threshold not shown in table." in md
183+
184+
176185
def test_markdown_pip_table(bandit_clean: dict[str, Any], pip_fixable: list[Any]) -> None:
177186
s = Settings()
178187
md = build_markdown(bandit_clean, pip_fixable, s)

uv.lock

Lines changed: 1 addition & 1 deletion
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)