Remove Bandit rules already check by Ruff

Mathis Loussert · Mathis Loussert · commit 713b4066b9f4 · 2025-07-15T11:08:41.000+02:00
diff --git a/.github/workflows/bandit_sonar.yaml b/.github/workflows/bandit_sonar.yaml
@@ -16,6 +16,7 @@ permissions:
 
 jobs:
   bandit:
+    if: github.event_name == 'push' || github.event.pull_request.head.repo.full_name != github.repository
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
@@ -27,7 +28,7 @@ jobs:
           excluded_paths: ./test/
           level: MEDIUM
           confidence: HIGH
-
+          skips: B101,B102,B103,B104,B105,B106,B107,B108,B110,B112,B113,B201,B202,B301,B302,B303,B304,B305,B306,B307,B308,B310,B311,B312,B313,B314,B315,B316,B317,B318,B319,B321,B323,B324,B501,B502,B503,B504,B505,B506,B507,B508,B509,B601,B602,B603,B604,B605,B606,B607,B608,B609,B610,B611,B612,B701,B702,B704
       - name: Upload SARIF file to GitHub
         uses: github/codeql-action/upload-sarif@v3
         with:
@@ -36,6 +37,7 @@ jobs:
 
   sonarcloud:
     name: SonarCloud Scan
+    if: github.event_name == 'push' || github.event.pull_request.head.repo.full_name != github.repository
     runs-on: ubuntu-latest
     steps:
       - uses: actions/checkout@v4
