New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Security testing with Bandit #237

Closed
atodorov opened this Issue Feb 27, 2018 · 1 comment

Comments

Projects
None yet
1 participant
@atodorov
Member

atodorov commented Feb 27, 2018

We should integrate with Bandit which is a security AST analyzer:
https://github.com/openstack/bandit (soon to be migrated under PyCQA)

@atodorov

This comment has been minimized.

Member

atodorov commented Apr 11, 2018

atodorov added a commit that referenced this issue Apr 12, 2018

[bandit] Enable security testing with Badit. Fix #237
Initially Bandit reports 129 possible issues:

Code scanned:
	Total lines of code: 27620
	Total lines skipped (#nosec): 0

Run metrics:
	Total issues (by severity):
		Undefined: 0.0
		Low: 122.0
		Medium: 7.0
		High: 0.0
	Total issues (by confidence):
		Undefined: 0.0
		Low: 0.0
		Medium: 115.0
		High: 14.0
Files skipped (0):

@atodorov atodorov closed this in 793f9f0 Apr 13, 2018

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment