#!/usr/bin/env sh
set -eu

cd "$(dirname "$0")/.."

echo "Backend lint"
(cd backend && ruff check app)

echo "Backend tests"
(cd backend && pytest)

echo "Backend dependency audit"
(cd backend && pip-audit)

echo "Backend static security scan"
(cd backend && bandit -q -r app -x app/tests)

echo "Frontend lint, typecheck, tests and dependency audit"
(cd frontend && npm run lint && npm run typecheck && npm test -- --run && npm audit --audit-level=moderate)

cat <<'INFO'
Container scan:
  docker compose build
  trivy image nexapantry-backend
  trivy image nexapantry-frontend

Secret scan:
  gitleaks detect --source .
INFO