Issues
- 0
IndexError: list index out of range while scanning cpython
#1141 opened by ericwb - 0
Do performance benchmark testing as part of build
#1140 opened by ericwb - 4
# nosec with bandit ID doesn't work properly sometimes
#1092 opened by ericwb - 2
assert_used skips change in 1.7.7
#1106 opened by jonyscathe - 2
SARIF docs are not rendered
#1138 opened by stephenpaulger - 3
- 0
Python 3.12 adds further protection for tarfile module
#1025 opened by ericwb - 4
Incorrect result for B202:tarfile_unsafe_members
#1038 opened by behnazh-w - 3
More Info hyperlink is broken
#1095 opened by ssabzevari-antuit - 0
Bandit container image.
#1087 opened by lukehinds - 0
Publish to Test PyPI fails
#1102 opened by ericwb - 0
ssh_no_host_key_verification is failing on Python 3.12
#1077 opened by dolfinus - 1
- 0
Official GitHub Action
#1098 opened by lukehinds - 1
OSSFuzz Integration
#1079 opened by capuanob - 1
One test fails
#1083 opened by yurivict - 0
B411 error can't be resolved by the suggested change
#1082 opened by kajinamit - 3
- 5
B314 since Python 3.6 is not valid
#1074 opened by CyberKatze - 4
Broken JSON on standard output
#1000 opened by muszalski - 0
Asking bandit to use `pyproject.toml` without a bandit config section causes exception
#1027 opened by apirogov - 5
Flag `markupsafe.Markup` on non-literal content
#1067 opened by xmo-odoo - 0
Issue: [B113:request_without_timeout]
#1062 opened by Rolstenhouse - 0
- 0
dependabot.yml should be in .github/workflows
#1055 opened by ericwb - 2
gitpython version <=3.1.32 has arbitrary code execution vulnerability (CVE-2023-40590)
#1050 opened by igirardi - 1
Support multiple output formats
#1047 opened by srgoni - 2
False nosec encountered warning
#1041 opened by costaparas - 2
B410: import_lxml not ignorable by name
#988 opened by tvuotila - 3
Not installing Bandit using Python3.11
#1039 opened by pythonbyte - 1
Docs request: B311 `random` suggesting fixes
#1023 opened by jamesbraza - 2
[B113:request_without_timeout]: False positive issue
#1010 opened by Niraj-Kamdar - 0
Account for pathlib chmod setting insecure permissions
#1042 opened by costaparas - 0
-c setup.cfg error [config] ERROR expected '<document start>', but found '<scalar>'
#1035 opened by Woocash7 - 2
Remove Python 3.7 support for EOL
#992 opened by ericwb - 0
#nosec directive not applied to entire expression split across multiple lines by Black formatter
#1033 opened by pawin35 - 1
Unable to install Bandit with pre-commit
#1032 opened by jmgate - 3
False positive for B105 / Possible hardcoded password
#987 opened by linusjf - 6
- 1
Wrongly formatted json output
#1019 opened by eyaranossian - 0
Use of crypt should be flagged
#1017 opened by ericwb - 0
- 7
- 4
Using `# nosec BXXX` annotation in a nested dict causes "higher" annotations to be ignored
#1003 opened by 0xDEC0DE - 0
- 1
Make use of rich for formatters
#1002 opened by ericwb - 0
urllib.urlopen does not exist in Python 3
#998 opened by ericwb - 0
False positive / regression: [B314:blacklist] Using xml.etree.ElementTree.fromstring to parse untrusted XML - while defusedxml is used
#995 opened by Lucas-C - 1
False positive: [B324:hashlib] Use of insecure MD5 hash function when usedforsecurity=False
#994 opened by Lucas-C - 1
Next Release
#991 opened by rbebb