mirror/kea
1
0
Fork 0
mirror of https://gitlab.isc.org/isc-projects/kea.git synced 2025-12-20 00:53:34 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

[#3287] add bandit, pycodestyle and pylint CI jobs

Browse Source
This commit is contained in:
Andrei Pavel
2024-04-30 13:25:29 +03:00
parent aa5fab9c9f
commit 4673e38116
3 changed files with 50 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

31
.gitlab-ci.yml
View File

@@ -72,6 +72,37 @@ shellcheck:
script:
- ./tools/shellcheck-all.sh
.base_get_list_of_modified_files: &get_modified_files
- MODIFIED_FILES=$(git diff --name-only $(git merge-base origin/master HEAD))
- echo "${MODIFIED_FILES}"
.base_get_list_of_python_scripts: &get_python_scripts
- PYTHON_SCRIPTS=$(find ${INPUT-.} -type f -not -path './.git/*' -and \( -name '*.py' -or -name '*.py.in' \) | sort)
- echo "${PYTHON_SCRIPTS}"
- if test -z "${PYTHON_SCRIPTS}"; then echo "No python scripts to check. Exiting early."; exit 0; fi
bandit:
script:
- bandit -r ./
pycodestyle:
stage: test
script:
# - *get_modified_files
# - INPUT="${MODIFIED_FILES}"
- *get_python_scripts
- pycodestyle --config=.gitlab/ci/pycodestyle.cfg ${PYTHON_SCRIPTS}
pylint:
stage: test
script:
# - *get_modified_files
# - INPUT="${MODIFIED_FILES}"
- *get_python_scripts
- pylint --jobs "$(nproc || gnproc || echo 1)" --rcfile ./.gitlab/ci/pylint.rc ${PYTHON_SCRIPTS}
# If we reached this point, it means pylint passed. Run again with all warnings enabled, but ignore the return code to show a list of improvements that the developer could do, even when CI is passing.
- pylint --jobs "$(nproc || gnproc || echo 1)" --rcfile ./.gitlab/ci/pylint.rc --enable all ${PYTHON_SCRIPTS} || true
############################### SAST ################################
# Read more about this feature here: https://docs.gitlab.com/ee/user/application_security/sast/
#

2
.gitlab/ci/pycodestyle.cfg Normal file
View File

@@ -0,0 +1,2 @@
[pycodestyle]
max-line-length = 120

17
.gitlab/ci/pylint.rc Normal file
View File

@@ -0,0 +1,17 @@
[MASTER]
disable=,
consider-using-f-string, # TODO: This one is decent. There are too many to fix. Enable later.
fixme,
invalid-name,
missing-class-docstring,
missing-function-docstring,
missing-module-docstring,
too-few-public-methods,
too-many-arguments,
too-many-boolean-expressions,
too-many-branches,
too-many-instance-attributes,
too-many-lines,
too-many-locals,
too-many-statements,
max-line-length=120