Makefile · Secure CI/CD Pipeline

21 lines · text

.PHONY: install lint sast secrets deps test all
 
install:
	pip install -r requirements-dev.txt
 
lint:
	ruff check .
 
sast:
	semgrep --config p/default --config p/python --config p/flask --config .semgrep/rules.yml --error
 
secrets:
	gitleaks detect --config .gitleaks.toml --no-banner
 
deps:
	pip-audit -r requirements.txt --strict --desc
 
test:
	pytest --cov=app --cov-report=term-missing
 
all: lint sast secrets deps test

1	.PHONY: install lint sast secrets deps test all
2
3	install:
4	pip install -r requirements-dev.txt
5
6	lint:
7	ruff check .
8
9	sast:
10	semgrep --config p/default --config p/python --config p/flask --config .semgrep/rules.yml --error
11
12	secrets:
13	gitleaks detect --config .gitleaks.toml --no-banner
14
15	deps:
16	pip-audit -r requirements.txt --strict --desc
17
18	test:
19	pytest --cov=app --cov-report=term-missing
20
21	all: lint sast secrets deps test