PyCQA · lukehinds · Oct 29, 2018 · Oct 24, 2018
diff --git a/.pre-commit-hooks.yaml b/.pre-commit-hooks.yaml
@@ -0,0 +1,6 @@
+-   id: bandit
+    name: bandit
+    description: 'Bandit is a tool for finding common security issues in Python code'
+    entry: bandit
+    language: python
+    types: [python]
diff --git a/README.rst b/README.rst
@@ -37,7 +37,7 @@ this Bandit processes each file, builds an AST from it, and runs appropriate
 plugins against the AST nodes. Once Bandit has finished scanning all the files
 it generates a report.
 
-Bandit was originally developed within the OpenStack Security Project and 
+Bandit was originally developed within the OpenStack Security Project and
 later rehomed to PyCQA.
 
 Installation
@@ -249,6 +249,23 @@ Usage::
       B703  django_mark_safe
 
 
+Version control integration
+---------------------------
+
+Use `pre-commit <https://pre-commit.com/>`_. Once you `have it
+installed <https://pre-commit.com/#install)>`_, add this to the
+`.pre-commit-config.yaml` in your repository
+(be sure to update `rev` to point to a real git tag/revision!)::
+
+    repos:
+    -   repo: https://github.com/PyCQA/bandit
+        rev: '' # Update me!
+        hooks:
+        - id: bandit
+
+
+Then run `pre-commit install` and you're ready to go.
+
 Configuration
 -------------
 An optional config file may be supplied and may include: