Open finswimmer opened 2 years ago
In Python 3.9 and later, the hashlib function has a new keyword argument usedforsecurity to describe the usage of the hash. In that way, we can better identify the severity of the error.
https://github.com/PyCQA/bandit/pull/805
So I'm afraid there will be no way to get the same result for Python >=3.9 and <3.9, beside pinning bandit/flake8-bandit to an older version?
Hello,
the following code leads to different error codes, depending on the Python version:
Python 3.8:
Python 3.9:
Python 3.10:
The installed package versions seems to be equal:
Any idea what's going on here? Is it a
flake8-bandit
issue or abandit
one?Thanks a lot!
fin swimmer