issues
search
PyCQA
/
bandit
Bandit is a tool designed to find common security issues in Python code.
https://bandit.readthedocs.io
Apache License 2.0
6.5k
stars
610
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
Add missing metric to Screen formatted report
#1206
Cabalist
opened
9 hours ago
0
#nosec BXXX does not contribute to `Total lines skipped (#nosec)`
#1205
Cabalist
opened
13 hours ago
1
f-strings marked with a `# nosec BXXX` show an incorrect warning about no failed tests appears
#1204
Cabalist
opened
13 hours ago
0
Update manager.py
#1203
Anjali0909
closed
1 day ago
1
pre-commit hook can't read version --> wrong URL generated
#1202
gothicVI
opened
3 days ago
0
Expand `B404, B602, B603 and B604` to include anyio calls
#1199
Skelmis
opened
1 week ago
0
Remove Sentry as a sponsor
#1198
ericwb
closed
1 week ago
1
Create a control flow graph to traverse code in possible execution order
#1197
ericwb
opened
2 weeks ago
0
[pre-commit.ci] pre-commit autoupdate
#1196
pre-commit-ci[bot]
closed
3 weeks ago
0
Remove more leftover OpenStack references
#1195
ericwb
closed
1 week ago
0
Add a JSON to seek funding from the FLOSS/fund
#1194
ericwb
closed
3 weeks ago
1
Update project urls with added links
#1193
ericwb
closed
1 month ago
1
Mark Python 3.13 as officially supported
#1192
ericwb
closed
1 month ago
1
[pre-commit.ci] pre-commit autoupdate
#1191
pre-commit-ci[bot]
closed
1 month ago
0
Bandit Skipping Directory and Unable to Output Report Error
#1190
spyd3r98
opened
1 month ago
0
Start testing with 3.14 alphas
#1189
ericwb
opened
1 month ago
1
Add a custom plugin from configuration instead of setuptools
#1188
4br3mm0rd
opened
1 month ago
0
Bump sigstore/cosign-installer from 3.6.0 to 3.7.0
#1187
dependabot[bot]
closed
1 month ago
0
Bump docker/setup-buildx-action from 3.6.1 to 3.7.1
#1186
dependabot[bot]
closed
1 month ago
0
Add more insecure cryptography cipher algorithms
#1185
ericwb
closed
1 month ago
0
Add a new playground to the docs
#1184
ericwb
opened
1 month ago
2
Rename doc file to match proper bandit ID
#1183
ericwb
closed
1 month ago
0
Traceback when using passing file via stdin
#1182
ericwb
opened
1 month ago
0
fix(requirements.txt): Pin rich package to fix ModuleNotFoundError error
#1181
jccastillocano
closed
1 month ago
2
ModuleNotFoundError: No module named 'typing_extensions'
#1180
olllyyyj
closed
1 month ago
3
Latest version of rich doesn't work
#1179
jccastillocano
closed
1 month ago
3
Bump docker/build-push-action from 6.7.0 to 6.9.0
#1178
dependabot[bot]
closed
1 month ago
0
No need to check httpx client without timeout defined
#1177
ericwb
closed
1 month ago
0
Pytorch Load / Save Plugin (#1114)
#1176
ericwb
closed
1 month ago
0
"Call to httpx without timeout" when httpx has timeout by default
#1175
GuiGav
closed
1 month ago
5
Removal of Python 3.8 support
#1174
ericwb
closed
1 month ago
0
Removal of Python 3.8 support (end-of-life on October 2024)
#1173
ericwb
closed
1 month ago
0
add github-actions documentation
#1172
Killpit
opened
2 months ago
1
bandit does not consistently detect extractall with TarFile
#1171
slavos1
opened
2 months ago
1
Use consistent file naming of docs
#1170
ericwb
closed
2 months ago
0
Lack of documentation for PyCQA/bandit-action
#1169
Killpit
closed
2 months ago
0
Bump docker/build-push-action from 6.6.1 to 6.7.0
#1168
dependabot[bot]
closed
3 months ago
0
Test for hardcoded credentials, CWE798
#1167
knyazer
closed
3 months ago
4
Bump docker/build-push-action from 6.5.0 to 6.6.1
#1166
dependabot[bot]
closed
3 months ago
0
Bump sigstore/cosign-installer from 3.5.0 to 3.6.0
#1165
dependabot[bot]
closed
3 months ago
0
complaining the feature that i am not using in the python library
#1164
r4m4k0735w4r4r40
opened
3 months ago
0
Bump docker/setup-buildx-action from 3.5.0 to 3.6.1
#1163
dependabot[bot]
closed
3 months ago
0
[pre-commit.ci] pre-commit autoupdate
#1162
pre-commit-ci[bot]
closed
1 month ago
0
Update pyupgrade version in .pre-commit-config.yaml
#1161
JamesConlan96
closed
3 months ago
1
Bump docker/build-push-action from 6.3.0 to 6.5.0
#1160
dependabot[bot]
closed
4 months ago
0
Bump docker/login-action from 3.2.0 to 3.3.0
#1159
dependabot[bot]
closed
4 months ago
0
Bump docker/setup-buildx-action from 3.4.0 to 3.5.0
#1158
dependabot[bot]
closed
4 months ago
0
Bump docker/build-push-action from 6.2.0 to 6.3.0
#1157
dependabot[bot]
closed
4 months ago
0
Bump docker/setup-buildx-action from 3.3.0 to 3.4.0
#1156
dependabot[bot]
closed
4 months ago
0
Bump docker/build-push-action from 6.1.0 to 6.2.0
#1155
dependabot[bot]
closed
4 months ago
1
Next