Skip to content

Issues: PyCQA/bandit

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

158 Open 504 Closed
158 Open 504 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Add a configuration option to prohibit # nosec without specific error codes enhancement New feature or request
#888 opened Apr 24, 2022 by mkniewallner
1
Bandit does not identify hard coded password for DB connection variable bug Something isn't working
#886 opened Apr 22, 2022 by ahsisti
1
Add ability to filter results by CWE enhancement New feature or request
#866 opened Mar 29, 2022 by ericwb
Provide deterministic URLs with description of tests enhancement New feature or request
#852 opened Mar 7, 2022 by darkdragon-001
False positive on token_fail_reason bug Something isn't working
#843 opened Mar 3, 2022 by jshcodes
1
False positive on 'Bearer' bug Something isn't working
#842 opened Mar 2, 2022 by Segelzwerg
multiline docstrings exclusion bug Something isn't working
#836 opened Feb 28, 2022 by ghrusu
Use .gitignore as basis of default excludes enhancement New feature or request
#826 opened Feb 25, 2022 by ericwb
1
1
Auto create a URL to file an issue when encountering an error enhancement New feature or request
#816 opened Feb 16, 2022 by ericwb
1
Add plugin to check for insecure usage of jwt enhancement New feature or request
#799 opened Feb 6, 2022 by ericwb
fail over non-existing files enhancement New feature or request
#797 opened Feb 5, 2022 by owillebo
baseline not working enhancement New feature or request
#796 opened Feb 5, 2022 by owillebo
Excluded paths from the .ini file ignored if -x flag is set bug Something isn't working
#753 opened Nov 12, 2021 by upcFrost
standard code suggestion from psycopg gets errors bug Something isn't working
#747 opened Oct 26, 2021 by BenjaminJanes
Option to output violation information of skipped tests/lines enhancement New feature or request
#737 opened Sep 16, 2021 by syl-ms
2
Add config via setup.cfg enhancement New feature or request
#736 opened Sep 9, 2021 by okainov
4
Error parsing pyproject.tml bug Something isn't working
#733 opened Sep 2, 2021 by edgarriba
4
Bandit fails when running as part of pre-commit bug Something isn't working
#730 opened Aug 29, 2021 by efimk-lu
2
Any chance of supporting sonarqube plugin? enhancement New feature or request
#729 opened Aug 23, 2021 by jooeji
1
SQL Injection flagged when concatenating strings bug Something isn't working
#727 opened Aug 7, 2021 by Dreamsorcerer
6
Possible hardcoded password: '' bug Something isn't working
#714 opened Jun 1, 2021 by Dreamsorcerer
1
XML (JUnit) output is not recognized by Bamboo JUnit parser bug Something isn't working
#712 opened May 18, 2021 by StykMartin
B405 complains about any xml.etree.ElementTree import, not just parse-related ones bug Something isn't working
#709 opened Apr 15, 2021 by vanschelven
2
Error message refers to "defusedxml.defuse_stdlib()" but calling that does not silence bandit bug Something isn't working
#708 opened Apr 15, 2021 by vanschelven
1
It would be useful to declare skips at module-level enhancement New feature or request
#700 opened Mar 22, 2021 by jamercee
ProTip! Exclude everything labeled bug with -label:bug.