Revisions of python-bandit
Ana Guerrero (anag+factory)
accepted
request 1100808
from
Dirk Mueller (dirkmueller)
(revision 13)
- update to 1.7.5: * Added a bit more \`project\_urls\` * Check for github action updates monthly * Improve handling nosec for multi-line strings * Improve detecting SQL injections in f-strings * Correct build status badge in README * Fix breaking build due to new tox * DOC: Add explanation on how to use pre-commit with config file * Add official Python 3.11 support * remove py2 exec example in docs * Typo fix * [docs] Mention \`exclude\_dirs\` option available in TOML and YAML * Fix AttributeError on detect of tuple assign condition * Fix json and yaml formatters to respect num lines * Fixup some invalid pickle testing * Pass correct number of arguments to match the \`%s\` placeholders. * Remove python 2 reference in docs * Fix filename of B202 in docs * weak\_cryptographic\_key assumes positional arg * Check for deprecated TLS 1.1 * Adding tarfile.extractall() plugin with examples * Fix issue #453 jinja2 template select\_autoescape when using jinja2.select\_autoescape * Fix a false positive condition yaml\_load * Add case for global exec * Docs for request without timeout has dead link * Blacklist pandas read\_pickle and add functional test for it
Dominique Leuenberger (dimstar_suse)
accepted
request 1031533
from
Daniel Garcia (dgarcia)
(revision 12)
- Remove not needed python-six dependency - Use autosetup instead of setup + patch - More specific sitelib package in %files
Dominique Leuenberger (dimstar_suse)
accepted
request 962068
from
Dirk Mueller (dirkmueller)
(revision 11)
Dominique Leuenberger (dimstar_suse)
accepted
request 951974
from
Dirk Mueller (dirkmueller)
(revision 10)
- update to 1.7.2: * Correctly define extras in \`setup.cfg\` (#755) * Remove leftover openstack code (#778) * Added snmp\_security check plugin for various SNMP checks (#403) * Fix README.rst (#365) * Fixup typo (#769) * Drop end-of-life Python 3.6 (#777) * Drop end-of-life Python 3.5 (#746) * Start using auto-formatters (#754) * Create FUNDING.yml (#774) * test\_help\_arg: remove assert on 'optional arguments' (#752) * Fix broken reported URL link for B107 (#751) - update to 1.7.1: * fix reading initial values from .bandit * Always use a Loader in yaml.load * PEP-518 support: configure bandit via pyproject.toml * document that random.choices() isn't secure either * Fix syntax errors in bug report * Update bug\_report.yaml * Fix syntax error in bug report * Use new issue template format * Update README.rst * Mock part of python 3.x * Add license to package installation metadata * #694 Bandit fails when using importlib with named arguments * Add string options for severity and confidence * Add support for Python 3.9 * Create config.yml * Add default labels to issues
Dominique Leuenberger (dimstar_suse)
accepted
request 929843
from
Dirk Mueller (dirkmueller)
(revision 9)
Dominique Leuenberger (dimstar_suse)
accepted
request 877896
from
Steve Kowalik (StevenK)
(revision 8)
- Update to 1.7.0: * Remove blacklist call to input() (#662) @ericwb * Remove universal support on the wheel (#655) @ericwb * Give some tips on how to resolve B101 in the doc (#616) @xuhdev * Don't show progress information on --quiet (#641) @fniessink * Add skip configuration to assert_used (#633) @wilbertom * Drop Python2 build, test, and install (#615) @ericwb * [FIX] blacklist: fix typo in import_ftplib (#601) @Yenthe666 * Resolve 'NoneType' object has no attribute 'id'Traceback in django_mark_safe (#598) @ehooo * Fix typo for activating venv (#590) @bavedarnow * Bump pyyaml (#588) @dosisod * Fix colorama not being disabled after being used (#586) @adambenali * Cleanup some typos in recent contributor guide (#585) @ericwb * [DOC] Support python3 venv creation (#583) @look4regev * Add sha1 to the list of insecure hashes (#561) @ericwb * Fix docs for B610,B611,B703 (#555) @amacfie * Add a section explaining "nosec" (#554) @exhuma * Add official support of Python 3.8 (#547) @ericwb * Ignore common directories by default (#544) @ericwb * Add shelve to the pickle blacklists (#542) @auscompgeek * Remove obsolete "sudo" keyword. (#538) @jugmac00 * Update test requirements to latest versions (#535) @ericwb * Fix readme file on Extending Bandit on list things (#534) @Aurel10 * fix the documentation file README.rst (#533) @Aurel10 * Cleanup comments after #510 (#532) @florczakraf * Use SPDX license identifier instead of bulky headers (#530) @ericwb * fix B603 docstring (#524) @graingert * Add type checking to name node of hashlib_new (#516) @teeann * --exit-zero option (#510) @maciejstromich * Fix 3.8 errors (#509) @tylerwince * Add several ini options for .bandit file (#508) @vuolter * get_url returns different urls calling twice (bug #506) (#507) @ehooo * Replace setattr (#493) @tylerwince - Refresh remove-non-test-deps.patch
Dominique Leuenberger (dimstar_suse)
accepted
request 871632
from
Dirk Mueller (dirkmueller)
(revision 7)
- cli tool, don't build with multiple python versions
Dominique Leuenberger (dimstar_suse)
accepted
request 811559
from
Dirk Mueller (dirkmueller)
(revision 6)
- drop oslosphinx dependency
Dominique Leuenberger (dimstar_suse)
accepted
request 748705
from
Tomáš Chvátal (scarabeus_iv)
(revision 5)
- Skip out python2 build as the dependencies are unresolvable
Dominique Leuenberger (dimstar_suse)
accepted
request 718178
from
Tomáš Chvátal (scarabeus_iv)
(revision 4)
Dominique Leuenberger (dimstar_suse)
accepted
request 703511
from
Tomáš Chvátal (scarabeus_iv)
(revision 3)
Dominique Leuenberger (dimstar_suse)
accepted
request 681223
from
Tomáš Chvátal (scarabeus_iv)
(revision 1)
Displaying all 14 revisions