Add security checks

Author: Aaron Suarez

.bandit

@@ -0,0 +1,2 @@
+[bandit]
+exclude: /tests

.travis.yml

@@ -29,6 +29,7 @@ script:
 - make build
 - make test
 - make lint
+- make bandit
 after_success:
 - bash bin/run.sh
 after_script:

Makefile

@@ -55,6 +55,10 @@ test-coverage:
 lint:
 	${DOCKER_COMPOSE} run ${RESOURCES_CONTAINER} flake8 app --statistics --count
 
+.PHONY: bandit
+bandit:
+	${DOCKER_COMPOSE} run ${RESOURCES_CONTAINER} bandit -r .
+
 .PHONY: help
 help: build
 	${DOCKER_COMPOSE} run ${RESOURCES_CONTAINER} ${FLASK} --help

requirements.txt

@@ -7,3 +7,4 @@ pytest-mock==1.10.1
 pyyaml==5.1
 requests==2.21.0
 SQLAlchemy-Utils==0.33.11
+bandit==1.5.1