security updates #47
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| name: Run CI | |
| permissions: read-all | |
| on: | |
| push: | |
| branches: | |
| - main | |
| pull_request: | |
| concurrency: | |
| group: ${{ github.ref }} | |
| cancel-in-progress: true | |
| jobs: | |
| lint: | |
| name: Lint Code | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Setup CI | |
| uses: lava-nc/ci-setup-composite-action@v1.1 | |
| with: | |
| repository: 'Lava-DL' | |
| - name: Run flakeheaven (flake8) | |
| run: poetry run flakeheaven lint src/lava tests/ | |
| security-lint: | |
| name: Security Lint Code | |
| runs-on: ubuntu-latest | |
| steps: | |
| - name: Setup CI | |
| uses: lava-nc/ci-setup-composite-action@v1.1 | |
| with: | |
| repository: 'Lava-DL' | |
| - name: Run bandit | |
| uses: tj-actions/bandit@v5.1 | |
| with: | |
| targets: | | |
| src/lava/. | |
| options: "-r --format custom --msg-template '{abspath}:{line}: {test_id}[bandit]: {severity}: {msg}'" | |
| unit-tests: | |
| name: Unit Test Code + Coverage | |
| runs-on: ${{ matrix.operating-system }} | |
| strategy: | |
| matrix: | |
| operating-system: [ubuntu-latest, windows-latest, macos-latest] | |
| steps: | |
| - name: Setup CI | |
| uses: lava-nc/ci-setup-composite-action@v1.1 | |
| with: | |
| repository: 'Lava-DL' | |
| - name: Run unit tests | |
| run: | | |
| # There is an issue "ImportError: cannot import name 'packaging' from 'pkg_resources'" when | |
| # using setuptools==70.0.0 -- temp fix to downgrade to setuptools==69.5.1 | |
| poetry run pip install setuptools==69.5.1 | |
| poetry run pytest | |