Paramiko permits various ways of importing the missing host key policy. It allows paramiko.client.AutoAddPolicy or paramiko.AutoAddPolicy. The later isn't being handled in Bandit.
This change adds news tests and modifies the plugin to inspect the AST to determine whether the argument is an Attribute, Name, or Call.
Paramiko permits various ways of importing the missing host key policy. It allows paramiko.client.AutoAddPolicy or paramiko.AutoAddPolicy. The later isn't being handled in Bandit.
This change adds news tests and modifies the plugin to inspect the AST to determine whether the argument is an Attribute, Name, or Call.
Fixes #1077