add bandit #33

bdwyer2 · 2020-05-26T21:58:37Z

add bandit security checks
update code to comply with bandit
update tests to expect the correct error type
switch from flask-restplus to flask-restx

maxfw/utils/image_functions.py

xuhdev · 2020-05-26T22:34:07Z

maxfw/utils/image_utils.py

-        assert sum(encoding[:-1]) == 0, \
-            'A Standardize or Normalize transformation must be positioned at the end of the pipeline.'
+        if sum(encoding[:-1]) != 0:
+            raise ValueError('A Standardize or Normalize transformation must be positioned at the end of the pipeline.')


Suggested change

raise ValueError('A Standardize or Normalize transformation must be positioned at the end of the pipeline.')

raise ValueError('A Standardize or Normalize transformation can only be positioned at the end of the pipeline.')

Maybe another if-clause for encoding[-1]?

@xuhdev something like this:
if sum(encoding[:-1]) != 0 or encoding[-1]:?

Yes, but the error message would be hard to write if done in one if-clause

Is this being caught here?
https://github.com/IBM/MAX-Framework/blob/master/maxfw/core/utils.py#L38

Don't look like the same thing to me, maybe @djalova can confirm?

I think it's better to ask @kmh4321

@xuhdev maybe for now I can revert 3e404c2 since that change is somewhat unrelated to this PR and open an issue?

Co-authored-by: Hong Xu <hong@topbug.net>

Co-authored-by: Brendan Dwyer <brendan.dwyer@ibm.com>

xuhdev

LGTM

bdwyer2 added 2 commits May 26, 2020 14:54

add bandit

6b7bf43

flake8

13b5253

bdwyer2 requested review from xuhdev and djalova May 26, 2020 21:58

bdwyer2 added 4 commits May 26, 2020 14:59

typo

74dbc8c

switch from falsk-restplus to flask-restx

56c9ea9

update README and tests

69476e5

change import to restx

eb6905d

xuhdev reviewed May 26, 2020

View reviewed changes

bdwyer2 and others added 9 commits May 26, 2020 15:39

Update maxfw/utils/image_utils.py

ff903ee

Co-authored-by: Hong Xu <hong@topbug.net>

fix f8

0d63434

Update maxfw/utils/image_functions.py

d58c0a4

Co-authored-by: Brendan Dwyer <brendan.dwyer@ibm.com>

Update maxfw/utils/image_functions.py

0912eed

Co-authored-by: Brendan Dwyer <brendan.dwyer@ibm.com>

use np.sum

f3533fe

update test

5741b3b

typo: mean -> std

a79f298

comment from Hong

3e404c2

revert

6a99e3a

bdwyer2 requested a review from xuhdev June 1, 2020 23:08

bdwyer2 mentioned this pull request Jun 1, 2020

update image_utils.py error messages #34

Closed

xuhdev approved these changes Jun 1, 2020

View reviewed changes

bdwyer2 merged commit 97b82ea into IBM:master Jun 1, 2020

bdwyer2 deleted the bandit branch June 2, 2020 00:00

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

add bandit #33

add bandit #33

bdwyer2 commented May 26, 2020 •

edited

Loading

xuhdev May 26, 2020

xuhdev May 26, 2020

bdwyer2 May 26, 2020

xuhdev May 26, 2020

bdwyer2 May 27, 2020

xuhdev May 27, 2020

djalova Jun 1, 2020

bdwyer2 Jun 1, 2020

xuhdev Jun 1, 2020

bdwyer2 Jun 1, 2020

xuhdev left a comment

	raise ValueError('A Standardize or Normalize transformation must be positioned at the end of the pipeline.')
	raise ValueError('A Standardize or Normalize transformation can only be positioned at the end of the pipeline.')

add bandit #33

add bandit #33

Conversation

bdwyer2 commented May 26, 2020 • edited Loading

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

Choose a reason for hiding this comment

xuhdev left a comment

Choose a reason for hiding this comment

bdwyer2 commented May 26, 2020 •

edited

Loading