From dd0c13d02b15c708c4cf4d1030e8c9d2d6e601fb Mon Sep 17 00:00:00 2001
From: Tonye Jack <jtonye@ymail.com>
Date: Thu, 6 Apr 2023 01:27:07 -0600
Subject: [PATCH 1/7] feat: pin bandit to the latest version

---
 requirements.txt | 1 +
 1 file changed, 1 insertion(+)
 create mode 100644 requirements.txt

diff --git a/requirements.txt b/requirements.txt
new file mode 100644
index 0000000..cd4a8dc
--- /dev/null
+++ b/requirements.txt
@@ -0,0 +1 @@
+bandit==1.7.5

From 77a50de4200a366966a2a68d012371b6c98b68d2 Mon Sep 17 00:00:00 2001
From: Tonye Jack <jtonye@ymail.com>
Date: Thu, 6 Apr 2023 01:28:16 -0600
Subject: [PATCH 2/7] Update Dockerfile

---
 Dockerfile | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/Dockerfile b/Dockerfile
index 2a54cb6..132a9a0 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -2,8 +2,10 @@ FROM python:3.11.3-slim-buster
 
 LABEL maintainer="Tonye Jack <jtonye@ymail.com>"
 
+COPY requirements.txt .
+
 RUN python3 -m venv /venv && \
-  /venv/bin/pip3 install bandit
+  /venv/bin/pip3 install -r requirements.txt
 
 ENV PATH="/venv/bin:${PATH}"
 

From 596873a28695e4565ac5fc0e65f752385e677c53 Mon Sep 17 00:00:00 2001
From: Tonye Jack <jtonye@ymail.com>
Date: Thu, 6 Apr 2023 01:36:53 -0600
Subject: [PATCH 3/7] Update test.yml

---
 .github/workflows/test.yml | 26 +++++++++++++++++++++++++-
 1 file changed, 25 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index a961a1d..849a887 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -9,20 +9,44 @@ on:
       - main
 
 jobs:
+  build:
+    runs-on: ubuntu-latest
+    name: Build image
+    steps:
+      - name: Check
   test:
     runs-on: ubuntu-latest
     name: Test bandit
     steps:
       - name: Checkout
-        uses: actions/checkout@v3.5.0
+        uses: actions/checkout@v3
+  
       - name: shellcheck
         uses: reviewdog/action-shellcheck@v1.17
+
+      - name: Set up QEMU
+        uses: docker/setup-qemu-action@v2
+
+      - name: Set up Docker Buildx
+        uses: docker/setup-buildx-action@v2
+
+      - name: Docker Build
+        uses: docker/build-push-action@v4
+        with:
+          context: .
+          push: false
+          tags: bandit-dev:latest
+          cache-from: type=gha
+          cache-to: type=gha,mode=max
+
       - name: Run bandit
         uses: ./
+
       - name: Run bandit with a single target
         uses: ./
         with:
           targets: "test_package"
+
       - name: Run bandit with a list of targets
         uses: ./
         with:

From e55134dd710bb98680d3e288563d123bfa1d8e8e Mon Sep 17 00:00:00 2001
From: Tonye Jack <jtonye@ymail.com>
Date: Thu, 6 Apr 2023 01:40:20 -0600
Subject: [PATCH 4/7] Update test.yml

---
 .github/workflows/test.yml | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 849a887..94e572d 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -9,11 +9,6 @@ on:
       - main
 
 jobs:
-  build:
-    runs-on: ubuntu-latest
-    name: Build image
-    steps:
-      - name: Check
   test:
     runs-on: ubuntu-latest
     name: Test bandit

From cc8d19e58d913e33a93c9eabac1bfed87113f19b Mon Sep 17 00:00:00 2001
From: Tonye Jack <jtonye@ymail.com>
Date: Thu, 6 Apr 2023 01:45:57 -0600
Subject: [PATCH 5/7] Update test.yml

---
 .github/workflows/test.yml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index 94e572d..fcdfb4a 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -30,7 +30,7 @@ jobs:
         with:
           context: .
           push: false
-          tags: bandit-dev:latest
+          tags: ghcr.io/tj-actions/bandit:latest
           cache-from: type=gha
           cache-to: type=gha,mode=max
 

From c80cb76d1511032639e9985e01408d149e46d50b Mon Sep 17 00:00:00 2001
From: Tonye Jack <jtonye@ymail.com>
Date: Thu, 6 Apr 2023 01:48:17 -0600
Subject: [PATCH 6/7] Update test.yml

---
 .github/workflows/test.yml | 1 +
 1 file changed, 1 insertion(+)

diff --git a/.github/workflows/test.yml b/.github/workflows/test.yml
index fcdfb4a..3533468 100644
--- a/.github/workflows/test.yml
+++ b/.github/workflows/test.yml
@@ -30,6 +30,7 @@ jobs:
         with:
           context: .
           push: false
+          load: true
           tags: ghcr.io/tj-actions/bandit:latest
           cache-from: type=gha
           cache-to: type=gha,mode=max

From 75f6eaf12eef58e71de8843a63afea8cbadec28e Mon Sep 17 00:00:00 2001
From: Tonye Jack <jtonye@ymail.com>
Date: Thu, 6 Apr 2023 01:53:10 -0600
Subject: [PATCH 7/7] Update Dockerfile

---
 Dockerfile | 1 +
 1 file changed, 1 insertion(+)

diff --git a/Dockerfile b/Dockerfile
index 132a9a0..9f79511 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -5,6 +5,7 @@ LABEL maintainer="Tonye Jack <jtonye@ymail.com>"
 COPY requirements.txt .
 
 RUN python3 -m venv /venv && \
+  /venv/bin/pip3 install -U pip && \
   /venv/bin/pip3 install -r requirements.txt
 
 ENV PATH="/venv/bin:${PATH}"