ha-core

Commit Graph

Author	SHA1	Message	Date
Ville Skyttä	de04a1ed67	Enable more Bandit tests (#44307 ) https://bandit.readthedocs.io/en/latest/plugins/index.html#complete-test-plugin-listing	2020-12-19 12:35:13 +01:00
Ville Skyttä	5e2ba2eb77	Enable some more bandit checks (#30857 ) * Enable B108 (hardcoded tmp dir), address findings * Enable B602 (subprocess popen with shell), address findings * Enable B604 (start process with shell), address findings * Enable B306 (mktemp), B307 (eval), and B325 (tempnam), no issues to address	2020-01-20 18:44:55 +02:00
Ville Skyttä	d4c80f160c	Add bandit, use to catch known vulnerable XML parsing (#28341 ) * Add bandit to pre-commit and CI, use to catch known vulnerable XML parsing * Use defusedxml instead of direct xml.etree to parse XML * Move config to tests/bandit.yaml	2019-11-18 09:10:15 +01:00

Author

SHA1

Message

Date

Ville Skyttä

de04a1ed67

Enable more Bandit tests (#44307 )

https://bandit.readthedocs.io/en/latest/plugins/index.html#complete-test-plugin-listing

2020-12-19 12:35:13 +01:00

Ville Skyttä

5e2ba2eb77

Enable some more bandit checks (#30857 )

* Enable B108 (hardcoded tmp dir), address findings

* Enable B602 (subprocess popen with shell), address findings

* Enable B604 (start process with shell), address findings

* Enable B306 (mktemp), B307 (eval), and B325 (tempnam), no issues to address

2020-01-20 18:44:55 +02:00

Ville Skyttä

d4c80f160c

Add bandit, use to catch known vulnerable XML parsing (#28341 )

* Add bandit to pre-commit and CI, use to catch known vulnerable XML parsing

* Use defusedxml instead of direct xml.etree to parse XML

* Move config to tests/bandit.yaml

2019-11-18 09:10:15 +01:00

3 Commits