ci: add tests, linter, and bandit/gitleaks checks and precommits #13

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged

marcoriol merged 35 commits into dev from add-ci-test-run

Mar 16, 2026

Merged

ci: add tests, linter, and bandit/gitleaks checks and precommits #13

refactor: improve logging format in Taiga and GitHub webhook handlers

SonarQubeCloud / SonarCloud Code Analysis failed Mar 16, 2026 in 32s

Quality Gate failed

Failed conditions
B Security Rating on New Code (required ≥ A)

See analysis details on SonarQube Cloud

Catch issues before they fail your Quality Gate with our IDE extension SonarQube for IDE

Annotations

Check warning on line 65 in routes/github_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzPUq9vl-vY2hRLlKCM&open=AZzPUq9vl-vY2hRLlKCM&pullRequest=13

Check warning on line 46 in routes/taiga_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzsd1Y-GQUKvkf3XtQ6&open=AZzsd1Y-GQUKvkf3XtQ6&pullRequest=13

Check warning on line 106 in routes/github_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzsd1VnGQUKvkf3XtQ0&open=AZzsd1VnGQUKvkf3XtQ0&pullRequest=13

Check warning on line 64 in routes/taiga_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzsd1Y-GQUKvkf3XtQ2&open=AZzsd1Y-GQUKvkf3XtQ2&pullRequest=13

Check warning on line 122 in routes/github_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzsd1VnGQUKvkf3XtQz&open=AZzsd1VnGQUKvkf3XtQz&pullRequest=13

Check warning on line 44 in routes/excel_routes.py

sonarqubecloud / SonarCloud Code Analysis

Remove this commented out code.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzPUq9Ql-vY2hRLlKCJ&open=AZzPUq9Ql-vY2hRLlKCJ&pullRequest=13

Check failure on line 27 in routes/excel_routes.py

sonarqubecloud / SonarCloud Code Analysis

Do not use query parameters with POST requests; use path parameters or request body instead.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzPUq9Ql-vY2hRLlKCI&open=AZzPUq9Ql-vY2hRLlKCI&pullRequest=13

Check warning on line 87 in routes/github_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzPUq9vl-vY2hRLlKCL&open=AZzPUq9vl-vY2hRLlKCL&pullRequest=13

Check warning on line 160 in routes/taiga_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzPUq8al-vY2hRLlKCF&open=AZzPUq8al-vY2hRLlKCF&pullRequest=13

Check warning on line 91 in routes/taiga_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzsd1Y-GQUKvkf3XtQ1&open=AZzsd1Y-GQUKvkf3XtQ1&pullRequest=13

Check failure on line 63 in utils/recovery/github_recovery.py

sonarqubecloud / SonarCloud Code Analysis

Refactor this function to reduce its Cognitive Complexity from 46 to the 15 allowed.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzPUq7pl-vY2hRLlKCD&open=AZzPUq7pl-vY2hRLlKCD&pullRequest=13

Check warning on line 114 in routes/github_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzsd1VnGQUKvkf3XtQx&open=AZzsd1VnGQUKvkf3XtQx&pullRequest=13

Check warning on line 147 in routes/taiga_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzsd1Y-GQUKvkf3XtQ4&open=AZzsd1Y-GQUKvkf3XtQ4&pullRequest=13

Check warning on line 113 in routes/taiga_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzsd1Y-GQUKvkf3XtQ3&open=AZzsd1Y-GQUKvkf3XtQ3&pullRequest=13

Check warning on line 117 in routes/taiga_routes.py

sonarqubecloud / SonarCloud Code Analysis

Change this code to not log user-controlled data.

See more on https://sonarcloud.io/project/issues?id=Learning-Dashboard_LD_Connect_Event&issues=AZzsd1Y-GQUKvkf3XtQ5&open=AZzsd1Y-GQUKvkf3XtQ5&pullRequest=13

View more details on SonarQubeCloud