From 9e7437a8a29016b4add6acf211aa63a24d024ad2 Mon Sep 17 00:00:00 2001 From: Pavel Zwerschke Date: Sun, 28 Jan 2024 16:16:03 +0100 Subject: [PATCH] migrate to copier template --- .copier-answers.yml | 7 +++++++ .github/dependabot.yml | 2 +- .github/workflows/autoupdate.yml | 12 ++++++------ .github/workflows/ci.yml | 3 ++- .github/workflows/keep-alive.yml | 17 +++++++++++++++++ .pre-commit-hooks.yaml | 4 ++-- LICENSE.txt => LICENSE | 2 +- README.md | 12 ++++++------ environment.yml | 1 + 9 files changed, 43 insertions(+), 17 deletions(-) create mode 100644 .copier-answers.yml create mode 100644 .github/workflows/keep-alive.yml rename LICENSE.txt => LICENSE (98%) diff --git a/.copier-answers.yml b/.copier-answers.yml new file mode 100644 index 0000000..f70d318 --- /dev/null +++ b/.copier-answers.yml @@ -0,0 +1,7 @@ +# This file is managed by Copier; DO NOT EDIT OR REMOVE. +_commit: v0.1.1 +_src_path: git@github.com:quantco/copier-template-pre-commit-mirrors +description: Check for common security issues. +entry: bandit +tool: bandit +url: https://github.com/PyCQA/bandit diff --git a/.github/dependabot.yml b/.github/dependabot.yml index a2a06ab..5a74cb9 100644 --- a/.github/dependabot.yml +++ b/.github/dependabot.yml @@ -3,7 +3,7 @@ updates: - package-ecosystem: github-actions directory: / schedule: - interval: weekly + interval: monthly reviewers: - quantco/ci groups: diff --git a/.github/workflows/autoupdate.yml b/.github/workflows/autoupdate.yml index 30614d8..106ea32 100644 --- a/.github/workflows/autoupdate.yml +++ b/.github/workflows/autoupdate.yml @@ -1,8 +1,9 @@ name: Autoupdate + on: workflow_dispatch: schedule: - - cron: "0 */6 * * *" + - cron: "0 0 * * 0" defaults: run: @@ -16,11 +17,10 @@ jobs: steps: - name: Checkout branch uses: actions/checkout@v4 - with: - ref: ${{ github.head_ref }} - name: Set up Conda env - uses: mamba-org/provision-with-micromamba@3c96c0c27676490c63c18bc81f5c51895ac3e0e6 + uses: mamba-org/setup-micromamba@e820223f89c8720d6c740ca154a7adf32fcd278a with: + environment-file: environment.yml environment-name: check-env - name: Find latest version id: versions @@ -31,8 +31,8 @@ jobs: new_version=$(micromamba list -n check-env "$pkgname" --json | jq -r '.[0].version') if [[ "$new_version" != "$old_version" ]]; then sed -i "s/$old_version/$new_version/g" environment.yml - echo "pkgname=$pkgname" >> "$GITHUB_OUTPUT" - echo "new-version=$new_version" >> "$GITHUB_OUTPUT" + echo "pkgname=$pkgname" >> $GITHUB_OUTPUT + echo "new-version=$new_version" >> $GITHUB_OUTPUT fi - uses: peter-evans/create-pull-request@153407881ec5c347639a548ade7d8ad1d6740e38 if: steps.versions.outputs.pkgname diff --git a/.github/workflows/ci.yml b/.github/workflows/ci.yml index cd881a1..27b57b5 100644 --- a/.github/workflows/ci.yml +++ b/.github/workflows/ci.yml @@ -16,6 +16,7 @@ jobs: with: ref: ${{ github.head_ref }} - name: Set up Conda env - uses: mamba-org/provision-with-micromamba@3c96c0c27676490c63c18bc81f5c51895ac3e0e6 + uses: mamba-org/setup-micromamba@e820223f89c8720d6c740ca154a7adf32fcd278a with: + environment-file: environment.yml environment-name: test-env diff --git a/.github/workflows/keep-alive.yml b/.github/workflows/keep-alive.yml new file mode 100644 index 0000000..ecc2990 --- /dev/null +++ b/.github/workflows/keep-alive.yml @@ -0,0 +1,17 @@ +name: Keep +on: + schedule: + - cron: 0 6 * * SUN + +jobs: + keep-alive: + name: Alive + runs-on: ubuntu-latest + steps: + - uses: actions/checkout@v4 + - uses: gautamkrishnar/keepalive-workflow@60b13c92aeda855e493b83aaf482c25da7e0043b + with: + commit_message: Ah ah ah, stayin' alive + committer_username: ForrestQuant + committer_email: forrestquant@users.noreply.github.com + time_elapsed: 50 # days diff --git a/.pre-commit-hooks.yaml b/.pre-commit-hooks.yaml index 20b0909..7d59e30 100644 --- a/.pre-commit-hooks.yaml +++ b/.pre-commit-hooks.yaml @@ -1,6 +1,6 @@ - id: bandit-conda name: bandit-conda + description: Check for common security issues. entry: bandit language: conda - description: Check for common security issues. - 'types': [python] + types: [python] diff --git a/LICENSE.txt b/LICENSE similarity index 98% rename from LICENSE.txt rename to LICENSE index 13cab97..1f66540 100644 --- a/LICENSE.txt +++ b/LICENSE @@ -1,4 +1,4 @@ -Copyright 2022 QuantCo, Inc. +Copyright 2024 QuantCo, Inc. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: diff --git a/README.md b/README.md index 12b491e..d9a82cc 100644 --- a/README.md +++ b/README.md @@ -1,17 +1,17 @@ -bandit(-conda) mirror -======================== +# bandit mirror Mirror of bandit for pre-commit with conda as a language. -* For pre-commit: see https://github.com/pre-commit/pre-commit -* For bandit: see https://github.com/PyCQA/bandit +For pre-commit: see [here](https://github.com/pre-commit/pre-commit) -### Using bandit with pre-commit and conda: +For ansible-lint: see [here](https://github.com/PyCQA/bandit) + +## Using bandit with pre-commit and conda: Add this to your `.pre-commit-config.yaml` ```yaml - - repo: https://github.com/Quantco/pre-commit-mirrors-bandit + - repo: https://github.com/quantco/pre-commit-mirrors-bandit rev: '' # Use the sha / tag you want to point at hooks: - id: bandit-conda diff --git a/environment.yml b/environment.yml index 2dc4598..2a08bcb 100644 --- a/environment.yml +++ b/environment.yml @@ -1,4 +1,5 @@ channels: - conda-forge + - nodefaults dependencies: - bandit=1.7.7