One-liner in bandit config to skip B101 assert_used in files matching a filter #346

mareecarroll · 2018-07-23T03:33:08Z

Currently you can exclude a directory and you can skip certain tests across all scanned files. It would be very handy to be able to exclude test_* pytest files from the B101 assert test with a simple one liner in the .bandit config file.

This is a feature request for something like:

In .bandit

[bandit]
pytest_filter: test_* #excludes B101 in files matching test_*

Excluding all B101 is not a good solution, because I want to know about B101 in non-test modules.

Also, I'd like to be able to exclude on file filter like test_* rather than directory test/ because that filter works better across projects I have seen where test directory might not be named consistently, but all the pytests are generally named a special way e.g. test_*

This will allow a more general (across projects) config file to be set up.

The text was updated successfully, but these errors were encountered:

This, unfortunately, skips the test for all files. Upstream has a feature request for disabling tests for only certain files/folders. PyCQA/bandit#346

ericwb · 2019-05-09T08:10:04Z

Does #450 satisfy this feature request?

cancan101 · 2019-05-14T03:35:55Z

@ericwb can you elaborate on how you would use #450 to exclude the use of asserts just in the test files?

maxcountryman · 2020-04-25T15:11:42Z

@ericwb I'd also be curious to know how #450 can be used to address this?

loikein · 2020-06-24T21:04:11Z

Does this not work anymore?

Adding this configuration allows the user to skip the assert_used against some files. This is useful because asserts are very common in test files when using pytest. Specifying this configuration: ``` assert_used: skips: ['test.py$', '^test'] ``` would skip all asserts against a test file. Resolves PyCQA#346

Adding this configuration allows the user to skip the assert_used against some files. This is useful because asserts are very common in test files when using pytest. Specifying this configuration: ``` assert_used: skips: ['*_test.py', 'test_*.py'] ``` would skip all asserts against a test file. Resolves PyCQA#346

* Add skip configuration to assert_used Adding this configuration allows the user to skip the assert_used against some files. This is useful because asserts are very common in test files when using pytest. Specifying this configuration: ``` assert_used: skips: ['*_test.py', 'test_*.py'] ``` would skip all asserts against a test file. Resolves #346 * Document assert test skipping Co-authored-by: Luke Hinds <7058938+lukehinds@users.noreply.github.com>

* Add skip configuration to assert_used Adding this configuration allows the user to skip the assert_used against some files. This is useful because asserts are very common in test files when using pytest. Specifying this configuration: ``` assert_used: skips: ['*_test.py', 'test_*.py'] ``` would skip all asserts against a test file. Resolves PyCQA#346 * Document assert test skipping Co-authored-by: Luke Hinds <7058938+lukehinds@users.noreply.github.com>

diegovalenzuelaiturra · 2021-11-16T19:55:45Z

Hi, the following may be helpful to configure bandit to avoid raising B101 assert_used warnings on python tests.

Document how to use Bandit #603 (comment)

* Add skip configuration to assert_used Adding this configuration allows the user to skip the assert_used against some files. This is useful because asserts are very common in test files when using pytest. Specifying this configuration: ``` assert_used: skips: ['*_test.py', 'test_*.py'] ``` would skip all asserts against a test file. Resolves PyCQA#346 * Document assert test skipping Co-authored-by: Luke Hinds <7058938+lukehinds@users.noreply.github.com>

ericwb added the enhancement New feature or request label Jul 23, 2018

aqw added a commit to pigskin/pigskin that referenced this issue Oct 2, 2018

Silence spurious bandit warnings

debe66a

This, unfortunately, skips the test for all files. Upstream has a feature request for disabling tests for only certain files/folders. PyCQA/bandit#346

messersc mentioned this issue Feb 1, 2019

Add capability to parse and check user-given bases mask (demux_reads … bihealth/digestiflow-demux#7

Merged

ericwb added this to the Near Future milestone May 9, 2019

This was referenced Apr 30, 2020

Usage needlessly complicated #606

Open

Skip configuration for certain paths only #457

Open

loikein mentioned this issue Jun 24, 2020

conditional sampling OpenSourceEconomics/econsa#33

Merged

This was referenced Aug 12, 2020

Add skip configuration to assert_used #633

Merged

Add skip configuration to assert_used wilbertom/bandit#1

Merged

lukehinds closed this as completed in #633 Nov 30, 2020

ericwb modified the milestones: Near Future, Release 1.6.3 Dec 6, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

One-liner in bandit config to skip B101 assert_used in files matching a filter #346

One-liner in bandit config to skip B101 assert_used in files matching a filter #346

mareecarroll commented Jul 23, 2018

ericwb commented May 9, 2019

cancan101 commented May 14, 2019

maxcountryman commented Apr 25, 2020

loikein commented Jun 24, 2020

diegovalenzuelaiturra commented Nov 16, 2021 •

edited

One-liner in bandit config to skip B101 assert_used in files matching a filter #346

One-liner in bandit config to skip B101 assert_used in files matching a filter #346

Comments

mareecarroll commented Jul 23, 2018

ericwb commented May 9, 2019

cancan101 commented May 14, 2019

maxcountryman commented Apr 25, 2020

loikein commented Jun 24, 2020

diegovalenzuelaiturra commented Nov 16, 2021 • edited

diegovalenzuelaiturra commented Nov 16, 2021 •

edited