Add bandit to pre-commit · collective/pas.plugins.oidc@ac751be

Triggered via push November 8, 2023 19:43

ericof

pushed ac751be

issue-32-plone-meta

Status Success

Total duration 26s

Artifacts 1

bandit.yml

on: push

build

15s

Annotations

3 errors and 1 notice

Test: subprocess_popen_with_shell_equals_true id: B602: src/pas/plugins/oidc/locales/update.py#L41

subprocess call with shell=True identified, security issue. more info https://bandit.readthedocs.io/en/1.7.5/plugins/b602_subprocess_popen_with_shell_equals_true.html

Test: subprocess_popen_with_shell_equals_true id: B602: src/pas/plugins/oidc/locales/update.py#L50

subprocess call with shell=True identified, security issue. more info https://bandit.readthedocs.io/en/1.7.5/plugins/b602_subprocess_popen_with_shell_equals_true.html

Test: subprocess_popen_with_shell_equals_true id: B602: src/pas/plugins/oidc/locales/update.py#L58

subprocess call with shell=True identified, security issue. more info https://bandit.readthedocs.io/en/1.7.5/plugins/b602_subprocess_popen_with_shell_equals_true.html

Test: blacklist id: B404: src/pas/plugins/oidc/locales/update.py#L6

Consider possible security implications associated with the subprocess module. more info https://bandit.readthedocs.io/en/1.7.5/blacklists/blacklist_imports.html#b404-import-subprocess

Artifacts

Produced during runtime

Name	Size
Security report Expired	2.34 KB

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Add bandit to pre-commit #144

Summary

Add bandit to pre-commit #144

Jobs

Run details

bandit.yml

Annotations

Artifacts