bandit
https://github.com/pycqa/bandit
Python
Bandit is a tool designed to find common security issues in Python code.
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Python not yet supported7 Subscribers
Add a CodeTriage badge to bandit
Help out
- Issues
- Adding option to not print line's number: --no-line-numbers
- Use a table format for list of plugins
- SQL Injection flagged when concatenating strings
- #640 - Exit zero status based on severity level
- ini "exclude" config is ignored
- Fix Ini file settings ignored
- #nosec not working for multi-line strings in python 3.8
- Bandit 1.6.3 does not respect excluded paths from .bandit file
- #nosec is not working for multiline assert.
- Detect misuse of `psycopg2.sql.SQL` composable
- Docs
- Python not yet supported