bandit
bandit copied to clipboard
PyCQA
Bandit is a tool designed to find common security issues in Python code.
**Describe the bug** **exclude** configuration inside **.bandit** ini file is always ignored due to default cli argument. **To Reproduce** Steps to reproduce the behavior: 1. Create . bandit file with...
### Describe the bug Bandit 1.7.1 no longer appends CLI-provided excluded paths to those provided in the `.ini` file, but rather substitutes the excluded paths list, which contradicts the doc:...
**Is your feature request related to a problem? Please describe.** Recently some possible misuses of unicode characters were described. See [PEP 672](https://www.python.org/dev/peps/pep-0672/) for a description. **Describe the solution you'd like**...
**Is your feature request related to a problem? Please describe.** I'd like to use single `setup.cfg` file for many different linters/plugins/style checkers. Currently bandit requires to have special config for...
### Describe the bug Hi, We use pscopg2 and have the following query: ``` # Now to get all user preferences for the user id sql_str = 'SELECT "user_preference"."preference_app_id","user_preference"."value", '...
### Describe the bug It seems that when concatenating strings in a `cur.execute()` call, it flags up sql injection possibilities, even though all the string arguments are being passed into...
### Describe the bug Hi ! I'm following the documentation** to provide a custom setup for bandit to exclude some tests (B101) in our testing framework but I get the...
### Describe the bug I'm using the following configuration in pre-commit: ``` repos: - repo: https://github.com/ambv/black rev: 19.10b0 hooks: - id: black language_version: python3.7 - repo: https://github.com/pre-commit/mirrors-mypy rev: v0.790 hooks:...
**Is your feature request related to a problem? Please describe.** In some cases, it is desirable to have the report in multiple different formats. **Describe the solution you'd like** Allow...
Several build tools require that the output files from various code analysis tools be in the junit-xml format. I can see how to output to xml using bandit, but not...
