fix: gitleaks disabled + bandit brought back

codiphile · codiphile · commit 6ad9490307f7 · 2025-09-05T14:38:55.000+05:30
diff --git a/.github/workflows/ci-cd.yml b/.github/workflows/ci-cd.yml
@@ -104,18 +104,6 @@ jobs:
     - name: 📥 Checkout Repository
       uses: actions/checkout@v4
     
-    - name: 🔍 Run GitHub Security Advisory
-      uses: github/super-linter@v5
-      env:
-        DEFAULT_BRANCH: main
-        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
-        VALIDATE_PYTHON_BLACK: false
-        VALIDATE_PYTHON_FLAKE8: false
-        VALIDATE_PYTHON_ISORT: false
-        VALIDATE_PYTHON_MYPY: false
-        VALIDATE_JAVASCRIPT_ES: false
-        VALIDATE_TYPESCRIPT_ES: false
-        VALIDATE_DOCKERFILE_HADOLINT: false
     
     - name: 🔒 Frontend Security Audit
       working-directory: ./frontend
diff --git a/scripts/ci-local.sh b/scripts/ci-local.sh
@@ -71,6 +71,12 @@ if command -v uv &> /dev/null; then
         print_warning "mypy: Type checking issues found. Please review above."
     fi
     
+    print_status "Running Bandit (Security Check)..."
+    if uv run bandit -r app/ -f json > /dev/null 2>&1; then
+        print_success "Bandit: Security check passed!"
+    else
+        print_warning "Bandit: Security issues found. Please review."
+    fi
     
 else
     print_error "uv not found. Please install uv to run backend linting."
