Update sast-scan-python.yml

harvard-lts · Mar 22, 2024 · 7b5123d · 7b5123d
1 parent b5a3cf9
commit 7b5123d
Showing 1 changed file with 11 additions and 5 deletions.
diff --git a/.github/workflows/sast-scan-python.yml b/.github/workflows/sast-scan-python.yml
@@ -9,12 +9,13 @@ on:
   push:
     branches:
       - main
-      -
+
 jobs:
   sast_scan:
     strategy:
       matrix:
-        version: [ 3.8 , 3.9, 3.10 ]
+        # Only certain versions supported Ref; https://raw.githubusercontent.com/actions/python-versions/main/versions-manifest.json
+        version: [ 3.10.14,3.11.8,3.12.2 ]
     name: Run Bandit Scan
     runs-on: ubuntu-latest
 
@@ -23,9 +24,14 @@ jobs:
         uses: actions/[email protected]
 
       - name: Set up Python
-        uses: actions/setup-python@v2
+        uses: actions/setup-python@v5
         with:
-          python-version: 3.8
+          python-version: ${{matrix.version}}
+
+      - name: Use Node.js 20.x
+        uses: actions/[email protected]
+        with:
+          node-version: 20.x
 
       - name: Install Bandit
         run: pip install bandit
@@ -34,7 +40,7 @@ jobs:
         run: bandit -ll -ii -r . -f json -o bandit-report.json
 
       - name: Upload Artifact
-        uses: actions/upload-artifact@v4.3.1
+        uses: actions/upload-artifact@v1
         if: always()
         with:
           name: bandit-findings