Bandit check in GitHub action.yml is not complete

[sourabhsparkala]

At present we are assuming that run: if it mentions bandit , it is a a function call.

• There maybe --options
• There may not be --options
• Approximation is the key. How to confirm if the bandit function call has been made, and it is not any random word as a parameter of some other command run.

Things to do:

• Make sure that all the possible scenarios are covered
• Improve on the bandit command run detection