Joungmin
|
37b4344137
|
Add: Comprehensive security scanning pipeline
- tests/test_security.py: Security test suite
- Updated Jenkinsfile: SonarQube, Snyk, Bandit, Safety, Semgrep
- test_requirements.txt: Security tool dependencies
**Security Tools Added:**
CODE QUALITY:
- Pylint, Flake8, Black, Isort, MyPy
- Vulture (dead code), Radon (complexity)
STATIC SECURITY:
- Bandit (Python SAST)
- Safety (dependency vulnerabilities)
- Semgrep (pattern matching)
- Detect Secrets (hardcoded secrets)
ADVANCED:
- SonarQube quality gate
- Snyk vulnerability scan
- pip-audit, pip-check
- pip-licenses (compliance)
**Pipeline Stages:**
1. Code Quality: Linting (Pylint, Flake8, Black, Isort)
2. Security: Static Analysis (Bandit, Safety, Semgrep, Detect Secrets)
3. Security: SonarQube Quality Gate
4. Security: Snyk Vulnerability Scan
5. Unit Tests
6. Security Tests (test_security.py)
7. Integration Tests
8. Build
9. Deploy to Staging
|
2026-02-19 03:36:42 +09:00 |
|
Joungmin
|
6d9bc5980f
|
Add: Stock tracker, Jenkins CI/CD pipeline, linting config
- stock_tracker.py: Portfolio tracking with P&L calculations
- Jenkinsfile: Full CI/CD with linting, testing, deployment
- test_requirements.txt: Testing dependencies
- .pylintrc: Linting configuration
- requirements.txt: Production dependencies
Features:
- Stock & crypto portfolio tracking
- Investment guideline checks
- Unit tests & linting pipeline
- Integration tests for Oracle/Telegram/Gitea
- Staging & Production deployment stages
|
2026-02-19 03:25:52 +09:00 |
|