Eric Brown
Eric Brown
**Is your feature request related to a problem? Please describe.** The documentation of PyJWT warns about various insecure usage of the module. It would be great to incorporate checks into...
The package.json is out-dated and still requires react-admin 2.x. "react-admin": "^2.1.1", There is a react-admin 3.x now. Can you please update to the latest react-admin?
If I use a FunctionField in the datagrid, for example: ``` "$" + (record.airfare + record.transport + record.hotel + record.meals + record.conf_ticket + record.other)} /> ``` I cannot choose to...
The partial sentence "GitHub also send an email" is grammatically incorrect. It should either be "sends" or "will also send" ### Why: Closes ISSUE ### What's being changed (if available,...
Some use of ftplib is properly secure. See https://docs.python.org/2/library/ftplib.html Specifically using ftplib.FTP_TLS mode is okay, where as ftplib.FTP is not.
### Describe the bug Using nosec with a bandit ID like `# nosec: B108` doesn't appear to always work. See reproduction steps. ### Reproduction steps ```bash 1. Run .tox/py312/bin/bandit bandit/plugins/general_hardcoded_tmp.py...
When using Bandit to scan projects based on Git source control, it would be benefitual to ignore files based on the patterns in the .gitignore file. Today, Bandit has some...
Transfer of OpenStack blueprint to GH issue: https://blueprints.launchpad.net/bandit/+spec/use-symtable Investigate if symtable can provide additional capabilities and improve accuracy of tests.
**Is your feature request related to a problem? Please describe.** Similar to other injection checks, add an LDAP injection. **Describe the solution you'd like** Like the other plugins that scan...