From b558157a80510b048de7f972c4899044d890ff3e Mon Sep 17 00:00:00 2001
From: rilesdun <rilydunlap@outlook.com>
Date: Sun, 17 Sep 2023 16:36:58 +0000
Subject: [PATCH] bandit testing

---
 .github/workflows/bandit-scan.yml | 40 ++++++++++++++++++-------------
 1 file changed, 23 insertions(+), 17 deletions(-)

diff --git a/.github/workflows/bandit-scan.yml b/.github/workflows/bandit-scan.yml
index 5c9fabf..f168c83 100644
--- a/.github/workflows/bandit-scan.yml
+++ b/.github/workflows/bandit-scan.yml
@@ -1,24 +1,30 @@
-name: Bandit
-on:
-  pull_request:
-  push:
-    branches:
-      - main
-  release:
-    types:
-      - created
+name: Security check - Bandit
+
+on: push
 
 jobs:
-  bandit:
+  build:
     runs-on: ubuntu-latest
+    strategy:
+      matrix:
+        os: [ ubuntu-latest ]
+        python-version: [ '2.7.17', '3.6.10' ]
+    name: Python ${{ matrix.python-version }} ${{ matrix.os }} 
+
     steps:
-      - uses: actions/checkout@v2
+      - name: Checkout repository
+        uses: actions/checkout@v2
+
+      - name: Python security check using Bandit and output as JSON
+        uses: kmcquade/bandit-report-artifacts-json@0.0.1
         with:
-          fetch-depth: 0 #get fuller history
-      - name: Run Bandit Report
-        uses: libertyy/py3-bandit-check@v2
-      - name: Save Bandit txt Report
-        if: ${{ always() }}
+          python_version: ${{ matrix.python-version }}
+          project_path: .
+          ignore_failure: false
+
+      - name: Security check report artifacts
         uses: actions/upload-artifact@v2
+        # if: failure()
         with:
-          path: ${{ RUNNER.temp }}/_github_home/bandit_report.out
\ No newline at end of file
+          name: Security report
+          path: output/
\ No newline at end of file