name: Vulnerability and Backdoor Detection Workflow

on:
  push:
    branches: [main]
  pull_request:
    branches: [main]

jobs:
  # build:
  #   runs-on: ubuntu-latest
  #   steps:
  #     - uses: actions/checkout@v2
  #     - name: Install dependencies
  #       run: pip install -r requirements.txt -i https://pypi.tuna.tsinghua.edu.cn/simple
  #     - name: Run tests
  #       run: python -m unittest discover -s tests

  security_check:
    runs-on: ubuntu-latest
    # needs: build # 确保安全检查在构建后执行
    steps:
      - uses: actions/checkout@v2
      # - name: Install dependencies
      #   run: pip install -r requirements.txt -i https://pypi.tuna.tsinghua.edu.cn/simple
      - name: Run Backdoor and Vulnerability Detection
        uses: sangge/BackDoorBuster@feature/match # 使用BackDoorBuster仓库的根目录下的 action.yml
        with:
          code_path: "./tests"
          requirements_file: "./requirements.txt"
          output_format: "txt"