From 142b09018495b2e6f58cd4615273fbe0c3fc0349 Mon Sep 17 00:00:00 2001
From: Jake Howard <git@theorangeone.net>
Date: Sun, 2 Oct 2016 12:42:39 +0100
Subject: [PATCH] add security checks

---
 Makefile         | 6 +++++-
 package.json     | 1 +
 requirements.txt | 1 +
 3 files changed, 7 insertions(+), 1 deletion(-)

diff --git a/Makefile b/Makefile
index 09f7968..877f612 100644
--- a/Makefile
+++ b/Makefile
@@ -47,7 +47,7 @@ node_modules:
 	npm install
 
 
-test: unittest lint spellcheck
+test: unittest lint spellcheck securitycheck
 
 unittest:
 	$(ENV)/nose2 --verbose
@@ -64,6 +64,10 @@ spellcheck:
 	$(NODE_BIN)/mdspell --en-gb -ranx theme/templates/**/*.* theme/templates/*.*
 	$(NODE_BIN)/mdspell --en-gb -ranx content/**/*.md content/*.md content/**/*.html content/*.html
 
+securitycheck:
+	$(NODE_BIN)/nsp check
+	$(ENV)/bandit -r plugins/ config/ tests/
+
 
 upload:
 	git clone https://github.com/RealOrangeOne/host-container.git $(DEPLOY_DIR)
diff --git a/package.json b/package.json
index 40ddb36..1659be3 100644
--- a/package.json
+++ b/package.json
@@ -32,6 +32,7 @@
     "eslint-plugin-react": "=3.4.2",
     "markdown-spellcheck": "=0.11.0",
     "node-sass": "=3.8.0",
+    "nsp": "=2.6.1",
     "postcss-cli": "=2.5.2",
     "sass-lint": "=1.8.2",
     "uglify-js": "=2.7.0"
diff --git a/requirements.txt b/requirements.txt
index 8423a83..5fff074 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,3 +1,4 @@
+bandit==1.1.0
 flake8==2.5.0
 fontawesome_markdown==0.2.5
 git+https://github.com/ryneeverett/python-markdown-comments.git