<a href="https://colab.research.google.com/github/kongglangannmarie/Software-Eng-/blob/main/Untitled3.ipynb" target="_parent"><img src="https://colab.research.google.com/assets/colab-badge.svg" alt="Open In Colab"/></a>

In [1]:
!pip install gradio



In [2]:
import gradio as gr
import re, tempfile, os
from datetime import datetime

def scan_code(code):
    findings=[]
    if re.search(r"(password|secret|api_key|token)\s*=\s*['\"]", code, re.I):
        findings.append(("Hardcoded Credentials","High","Use environment variables."))
    if re.search(r"hashlib\.md5|hashlib\.sha1", code):
        findings.append(("Weak Hash Function","Medium","Use SHA-256 or bcrypt."))
    if re.search(r"SELECT.*FROM.*\+", code, re.I|re.S):
        findings.append(("SQL Injection Risk","High","Use parameterized queries."))
    if re.search(r"\beval\s*\(|\bexec\s*\(", code):
        findings.append(("Use of eval/exec","High","Avoid eval/exec; use safer parsing."))
    if not findings:
        findings.append(("No critical vulnerabilities detected.","None","Code appears secure."))
    return findings

def scan(file, text):
    if file:
        # ‚úÖ FIXED: Works properly with Colab + Gradio uploads
        try:
            # Sometimes the uploaded file is a file path string
            if isinstance(file, str):
                with open(file, "r", encoding="utf-8", errors="ignore") as f:
                    code = f.read()
            else:
                # Sometimes it's a file-like object
                code = file.read().decode("utf-8", errors="ignore")
        except Exception:
            # Fallback for file.name if needed
            with open(file.name, "r", encoding="utf-8", errors="ignore") as f:
                code = f.read()
        name = os.path.basename(getattr(file, "name", "uploaded_code.py"))
    elif text.strip():
        code = text
        name = "pasted_code"
    else:
        return "Please upload or paste Python code.", None

    results = scan_code(code)
    ts = datetime.now().strftime("%Y-%m-%d %H:%M:%S")
    lines = [f"Python Security Scanner Report ‚Äî {ts}", "", ""]
    for i, (vuln, severity, fix) in enumerate(results, 1):
        lines.append(f"{i}. {vuln}\n  Severity: {severity}\n  Fix: {fix}\n")
    report = "\n".join(lines)

    tmp = tempfile.mktemp(suffix=".txt")
    open(tmp, "w").write(report)

    table = "|#|Vulnerability|Severity|Recommendation|\n|-|-|-|-|\n"
    for i, (vuln, severity, fix) in enumerate(results, 1):
        table += f"|{i}|{vuln}|{severity}|{fix}|\n"

    return table, tmp


# PROFESSIONAL UI VERSION
custom_css = """
.gradio-container {
    background-color: #0f1116;
    font-family: 'Inter', sans-serif;
    color: #e4e6eb;
}
h1, h2, h3 {
    color: #00aaff;
}
button, .gr-button {
    border-radius: 6px !important;
    font-weight: 600 !important;
}
textarea, input, .gr-text-input {
    background-color: #1a1d23 !important;
    border: 1px solid #2a2d33 !important;
    color: #e4e6eb !important;
}
.gr-markdown {
    background-color: #121417;
    border-radius: 10px;
    padding: 10px;
    border: 1px solid #2c2f34;
}
footer, .svelte-1ipelgc {
    display: none !important;
}
"""

import time

# ================== ADVANCED PROFESSIONAL UI ==================
custom_css = """
.gradio-container {
    background-color: #0d1117;
    font-family: 'Inter', sans-serif;
    color: #e6edf3;
}
h1, h2, h3, h4 {
    color: #58a6ff;
    font-weight: 600;
}
.gr-markdown {
    background-color: #161b22;
    border-radius: 10px;
    border: 1px solid #30363d;
    padding: 16px;
}
button, .gr-button {
    background-color: #238636 !important;
    color: white !important;
    border-radius: 8px !important;
    font-weight: 600 !important;
    transition: 0.2s all ease-in-out;
}
button:hover {
    background-color: #2ea043 !important;
}
textarea, input, .gr-text-input {
    background-color: #161b22 !important;
    border: 1px solid #30363d !important;
    color: #e6edf3 !important;
    border-radius: 6px !important;
}
.gr-file {
    background-color: #161b22 !important;
    border: 1px solid #30363d !important;
    border-radius: 8px !important;
}
footer, .svelte-1ipelgc {display: none !important;}
"""

# Simulate a "scanning" process with a delay
def run_scan_with_progress(file, text, progress=gr.Progress()):
    progress(0, desc="Initializing scan...")
    time.sleep(0.5)
    progress(0.3, desc="Analyzing code structure...")
    time.sleep(0.5)
    progress(0.6, desc="Checking for vulnerabilities...")
    time.sleep(0.5)
    progress(0.9, desc="Generating report...")
    time.sleep(0.5)
    progress(1.0, desc="Scan complete!")
    return scan(file, text)

with gr.Blocks(css=custom_css, title="Python Security Scanner") as demo:
    gr.Markdown("""
    # Python Security Scanner User Interface
    A modern web-based tool to identify **security vulnerabilities in Python code** before deployment. By Jay, Annmarie, Jesse and Collin
    ---
    """)

    with gr.Row():
        file_in = gr.File(label="Upload Python File (.py)", file_types=[".py"])
        text_in = gr.Textbox(label="Or Paste Your Python Code", lines=12, placeholder="Paste code here...")

    scan_btn = gr.Button("Run Security Scan")

    gr.Markdown("### üîç Scan Progress and Results")
    output_md = gr.Markdown()
    download_file = gr.File(label="üìÑ Download Full Report")

    gr.Markdown("---")
    gr.Markdown("_Developed by Team Python Security ‚Ä¢ Software Engineering Project 2025_")

    scan_btn.click(fn=run_scan_with_progress, inputs=[file_in, text_in], outputs=[output_md, download_file])

demo.launch(share=True)



  with gr.Blocks(css=custom_css, title="Python Security Scanner") as demo:


Colab notebook detected. To show errors in colab notebook, set debug=True in launch()
* Running on public URL: https://ba7d1aa58a17853db3.gradio.live

This share link expires in 1 week. For free permanent hosting and GPU upgrades, run `gradio deploy` from the terminal in the working directory to deploy to Hugging Face Spaces (https://huggingface.co/spaces)


