Fix crash on pyproject.toml without bandit config

This is a naive fix for bandit crashing when it encounters a `pyproject.toml` which does not contain any specific bandit configuration. This resolves the common failure mode that is seen, but does not cause bandit to fall back to another configuration source if the `pyproject.toml` does not contain any `tool.bandit` block. Resolves PyCQA#1027
javajawa · Dec 3, 2023 · a5c7e77 · a5c7e77
1 parent 6b2e247
commit a5c7e77
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/bandit/core/config.py b/bandit/core/config.py
@@ -52,7 +52,7 @@ def __init__(self, config_file=None):
 
                 try:
                     with f:
-                        self._config = tomllib.load(f)["tool"]["bandit"]
+                        self._config = tomllib.load(f).get("tool", {}).get("bandit", {})
                 except tomllib.TOMLDecodeError as err:
                     LOG.error(err)
                     raise utils.ConfigError("Error parsing file.", config_file)