bandit
https://github.com/pycqa/bandit
Python
Bandit is a tool designed to find common security issues in Python code.
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Python not yet supported7 Subscribers
Add a CodeTriage badge to bandit
Help out
- Issues
- Mark use of `PKCS1v15` for encryption and decryption a vulnerability
- False nosec encountered warning
- Account for pathlib chmod setting insecure permissions
- Add file permission check for pathlib chmod
- Reports that contain Unicode will cause Bandit pre-commit hook to crash
- Incorrect result for B202:tarfile_unsafe_members
- -c setup.cfg error [config] ERROR expected '<document start>', but found '<scalar>'
- #nosec directive not applied to entire expression split across multiple lines by Black formatter
- fix: correct no-prefix no-suffix exclude for top-level dirs (#975)
- Wrongly formatted json output
- Docs
- Python not yet supported