From 767bfc2a8be50ba36b2d5e2224c2176857f41398 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Fynn=20Beuttenm=C3=BCller?= <thefynnbe@gmail.com>
Date: Wed, 8 Jan 2025 17:02:53 +0100
Subject: [PATCH] add bandit code analysis

---
 .github/workflows/build.yaml | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/.github/workflows/build.yaml b/.github/workflows/build.yaml
index c890e8df..5725b7e8 100644
--- a/.github/workflows/build.yaml
+++ b/.github/workflows/build.yaml
@@ -22,6 +22,15 @@ jobs:
           jupyter: true
           version: "24.3"
 
+  bandit:
+    needs: black
+    runs-on: ubuntu-latest
+    permissions:
+      security-events: write
+    steps:
+      - name: Perform Bandit Analysis
+        uses: PyCQA/bandit-action@v1
+
   test-spec-conda:
     runs-on: ubuntu-latest
     strategy: