bandit
https://github.com/pycqa/bandit
Python
Bandit is a tool designed to find common security issues in Python code.
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Python not yet supported7 Subscribers
Add a CodeTriage badge to bandit
Help out
- Issues
- False negative: B202 unsafe `tarfile.extract()` not detected
- False negative: B103 fails to detect dangerous permissions set via stat module constants
- Fix false negatives in hardcoded password detection (B105/B106)
- False Negatives in B105/B106/B107 Hardcoded Password Detection
- Follow-up on GHSA-ggq6-wv5j-cpfg
- Unclear FAQ entry regarding "Under Which Version of Python Should I Install Bandit?"
- Flag logging/printing of likely sensitive information
- [Security] tarfile.extractall without member validation in examples/tarfile_extractall.py
- [pre-commit.ci] pre-commit autoupdate
- Update B313/B314 XML warning message for Python 3.11+
- Docs
- Python not yet supported