Skip to content

Recipe Examples

Real-world examples and variations of the security audit recipe for different project types and use cases.

Choose Your Perfect Recipe

Select the example that best matches your project structure and requirements. Each recipe includes complete setup instructions and can be customized for your specific needs.

Choose Your Recipe

  • Basic Recipe


    Perfect for: Simple Python projects with a single requirements.txt file

    ✅ Zero configuration required
    ✅ Works out of the box
    ✅ Perfect for getting started

    Basic Recipe

  • Enterprise Recipe


    Perfect for: Projects with multiple environments (dev, staging, prod)

    ✅ Matrix strategy for parallel auditing
    ✅ Environment-specific scanning
    ✅ Comprehensive coverage

    Enterprise Recipe

  • Django Recipe


    Perfect for: Django web applications

    ✅ Django security checks integration
    ✅ Multiple environment configurations
    ✅ Django-specific dependencies

    Django Recipe

  • FastAPI Recipe


    Perfect for: Modern async Python applications

    ✅ Separate dev/prod scanning
    ✅ API-focused dependencies
    ✅ Modern Python patterns

    FastAPI Recipe

  • Monorepo Recipe


    Perfect for: Complex projects with multiple Python services

    ✅ Dynamic service discovery
    ✅ Parallel auditing across services
    ✅ Flexible service structure

    Monorepo Recipe

Quick Recipe Selection

Project Type Recommended Recipe Setup Time
Simple Python app Basic Recipe 30 seconds
Multi-environment project Enterprise Recipe 1 minute
Django web app Django Recipe 1 minute
FastAPI microservice FastAPI Recipe 1 minute
Large monorepo Monorepo Recipe 2 minutes

Recipes in Action

See how the security audit recipe works in real scenarios with automatic issue creation and management.

When Vulnerabilities Are Found

Example: Vulnerability Detection

The recipe automatically creates detailed GitHub issues when security vulnerabilities are discovered:

Issue Title: 🚨 Security Audit: 3 vulnerabilities found in dependencies

Auto-generated GitHub Issue
## 🔍 Security Audit Summary
- **Scan Date:** 2024-01-15 08:00:00 UTC
- **Repository:** my-org/my-project
- **Branch:** main
- **Commit:** abc123def456
- **Vulnerabilities Found:** 3
- **Affected Packages:** 2

## 🚨 Vulnerability Details
| Package | Version | Vulnerability | Fix Available | Severity |
|---------|---------|---------------|---------------|----------|
| requests | 2.25.1 | CVE-2023-32681 | 2.31.0 | HIGH |
| urllib3 | 1.26.5 | CVE-2023-43804 | 2.0.7 | MEDIUM |
| urllib3 | 1.26.5 | CVE-2023-45803 | 2.0.7 | HIGH |

## 🔧 Automatic Fix Commands
```bash
# Review the vulnerabilities
pip-audit -r requirements.txt

# Apply automatic fixes (use with caution)
pip-audit -r requirements.txt --fix

# Or update manually
pip install "requests>=2.31.0" "urllib3>=2.0.7"

📋 Next Steps

  1. Review each vulnerability listed above
  2. Update affected packages to the recommended fix versions
  3. Test the application after updates
  4. Consider using pip-audit --fix for automatic updates

This issue was automatically generated by the Security Audit Recipe. ```

When Everything Is Clean

Example: Clean Audit Report

The recipe creates clean audit reports when no vulnerabilities are found:

Issue Title: ✅ Weekly Security Audit: No vulnerabilities found

Clean Audit GitHub Issue
## 🔍 Security Audit Summary
- **Status:** ✅ CLEAN - No vulnerabilities detected
- **Scan Date:** 2024-01-15 08:00:00 UTC
- **Dependencies Scanned:** 15 packages
- **Vulnerability Databases:** PyPI Advisory, OSV, Python Packaging Advisory

## 🛡️ Security Status
✅ All packages are up-to-date with security patches
✅ No known CVEs affecting current dependency versions
✅ Dependencies are from trusted sources

## 📈 Recommendations
Even though no vulnerabilities were found, consider these security best practices:
1. **Keep dependencies updated** - Regularly update to the latest stable versions
2. **Monitor security advisories** - Subscribe to security notifications
3. **Use dependency pinning** - Pin exact versions in production
4. **Regular audits** - This automated scan runs weekly

---
*This clean audit report was automatically generated by the Security Audit Recipe.*

Why Choose These Recipes?

Recipe Benefits Overview

Each recipe provides enterprise-grade security automation with minimal setup effort.

  • 30-second setup for any Python project
  • Zero maintenance - runs automatically
  • Works everywhere - any project size
  • Smart issue management - creates, updates, closes issues automatically
  • Rich reporting - JSON, Markdown, and text outputs
  • Scheduled & on-demand - weekly scans + manual triggers
  • Comprehensive coverage - scans entire dependency trees
  • Multiple databases - PyPI Advisory, OSV, Python Packaging Advisory
  • Real-time alerts - immediate notification when vulnerabilities are found

Getting Started

Quick Recipe Selection Guide

Not sure which recipe to choose? Follow this simple decision tree:

→ Simple Python project? Start with Basic Recipe
→ Django application? Use Django Recipe
→ FastAPI/modern API? Try FastAPI Recipe
→ Multiple environments? Go with Enterprise Recipe
→ Large monorepo? Choose Monorepo Recipe

Need help choosing? Check out our Getting Started Guide for detailed guidance!