feiko/tracker
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
No description
177 commits 1 branch 0 tags 5 MiB
  • JavaScript 58%
  • CSS 21.3%
  • Python 19.7%
  • Dockerfile 0.5%
  • HTML 0.5%
Find a file
Exact
Feiko a298a054fd security: add bandit SAST and pip-audit to CI 
bandit -r . -c pyproject.toml runs on every push alongside Ruff;
pip-audit -r requirements.txt runs alongside pytest.

pyproject.toml configures bandit:
- skips B101 (assert in tests — pytest design) and B105 (URL
  variables falsely flagged as hardcoded passwords)
- excludes tests/, frontend/, .venv/

Three nosec suppressions for confirmed false positives:
- db.py: parameterized INSERT with hardcoded column list (B608)
- scrape_courses.py: urlopen with a hardcoded string URL (B310)
- token_store.py: intentional silent fallback on corrupt token file (B110)

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-20 00:03:52 +02:00
.claude feat: streamline UI, remove hours, and overhaul bulk/lunch workflows 2026-05-09 14:13:42 +02:00
.forgejo/workflows security: add bandit SAST and pip-audit to CI 2026-05-20 00:03:52 +02:00
frontend chore: update eslint, @eslint/js, oxlint to latest major versions 2026-05-19 23:57:25 +02:00
routers feat(courses): add site and git links with improved scraper 2026-05-09 22:50:09 +02:00
tests fix(tests): update tests to match new canonical course names and restore missing logic 2026-05-09 16:59:37 +02:00
.dockerignore Add Docker configuration and ignore files 2026-03-25 12:50:55 +01:00
.gitignore Replace SQLite with Google Sheets, add Calendar import UI 2026-04-22 20:19:13 +02:00
.pre-commit-config.yaml fix(ops): use correct mirrors-oxlint repo for pre-commit 2026-05-09 22:15:24 +02:00
.ruff.toml ci: fix ruff linting errors and adjust config 2026-05-09 10:14:59 +02:00
CLAUDE.md ops: implement pre-commit hooks for automated linting 2026-05-09 21:46:23 +02:00
db.py security: add bandit SAST and pip-audit to CI 2026-05-20 00:03:52 +02:00
dependencies.py ci: fix ruff linting errors and adjust config 2026-05-09 10:14:59 +02:00
docker-compose.yml refactor: replace Google Sheets with SQLite, delete legacy cruft 2026-05-08 21:40:55 +02:00
Dockerfile security: lock npm supply chain against dependency tampering 2026-05-19 23:49:24 +02:00
GEMINI.md docs: document use of Bitwarden Secrets Manager 2026-05-17 13:32:38 +02:00
main.py feat: locations DB with km — smart location entry and km-aware claims 2026-05-09 13:52:04 +02:00
migrate_from_sheets.py ci: fix ruff linting errors and adjust config 2026-05-09 10:14:59 +02:00
pyproject.toml security: add bandit SAST and pip-audit to CI 2026-05-20 00:03:52 +02:00
requirements.txt refactor: backend modularization, frontend extraction, and testing setup 2026-05-09 10:03:51 +02:00
scrape_courses.py security: add bandit SAST and pip-audit to CI 2026-05-20 00:03:52 +02:00
seed.json refactor(db): decouple seed data from logic 2026-05-09 16:52:53 +02:00
token_store.py security: add bandit SAST and pip-audit to CI 2026-05-20 00:03:52 +02:00
tracker.db fix(courses): resolve database schema issues and improve URL management 2026-05-10 11:24:10 +02:00