Language / Framework: Python
Categories: Security

Bandit is a tool designed to find common security issues in Python code.

Enable the Plugin

To enable Bandit analysis, add the following to your .codeclimate.yml configuration file:

engines:
  bandit:
    enabled: true

More information about the CLI is available in the README here: https://github.com/codeclimate/codeclimate

Configure the Plugin

You can configure which files to be analyzed in your .codeclimate.yml file.

Other configurations can be made through a .badnit file. More information can be found on Bandit's documentation.

Plugin activation can also be made in .codeclimate.yml:

plugins:
  bandit:
    enabled: true