chore(ci): run bandit independently

l4rm4nd · web-flow · commit 2ab7f48217d9 · 2024-07-26T17:46:15.000+02:00
diff --git a/.github/workflows/docker-image.yml b/.github/workflows/docker-image.yml
@@ -45,10 +45,8 @@ jobs:
 
   bandit:
     name: SAST with Bandit
-    needs: changelog
-    if: github.event_name != 'pull_request' && needs.changelog.outputs.skipped == 'false'
     runs-on: ubuntu-latest
-    
+
     steps:
       - name: Checkout code
         uses: actions/checkout@v4
@@ -62,7 +60,16 @@ jobs:
         run: pip install bandit
 
       - name: Run Bandit
-        run: bandit -r xingdumper.py --severity-level medium
+        id: bandit
+        run: |
+           bandit -r xingdumper.py --severity-level medium -f html -o bandit_report.html
+
+      - name: Upload Bandit report
+        if: failure()
+        uses: actions/upload-artifact@v3
+        with:
+          name: bandit-report
+          path: bandit_report.html
 
   deploy:
     name: Deploy Image
