Tags: vinhht95-fork/bandit
Tags
Remove pycryptodome blacklist (PyCQA#470) * Remove pycryptodome from import blacklist pycryptodome appears to be actively maintained, as opposed to pycrypto. Unless there is a noted security issue with not using it, this removes the blanket blacklist on the library. Any insecure hashes/ciphers/etc. that the library provides will still be reported as per other libraries. * [functional-tests] - repurpose blacklist test to verify that pycryptodome is no longer blacklisted * - fix flake8 line too long * [flake8] - misunderstood what flake8 was complaining about.
[Important] This release removes the ‘stats’ elements from the JSON output formatter. The same information is available in the metrics section and duplicating the data is noisy and pointless. [Features] - Handle curve keyword arg weak_cryptographic_key [Bug Fixes] - UTF8 encoding fix for skipped filenames - Fixed partial path detection on windows - HTML output now passes markup validation [Behind the Scenes] - Many trivial fixes based on pylint scan - Many cleanups to docs and readme - Added functional tests for B308, B321, and B402
[New Features] - Added "input()" to the list of blacklisted calls (B322) [Bug Fixes] - Tests work with newest GitPython - Blacklist filtering now fixed, B001 no longer needed - Fixed false positive on YAML load() test (B506) - Fix crypto key size issues when we dont know what it is (B505) [Behind the Scenes] - Unit tests now use Mock over MagicMock - Unit tests now use assertEqual correctly - Module imports cleaned up
[New Features] - New test for HTTPoxy bug (CVE-2016-5386) - Man page added [Bug Fixes] - XSS bug fixed in HTML output (Security fix) - Various typos and spelling errors fixed [Behind the Scenes] - Catch general exceptions per-file - Docs improvements - Py3.5 bits
1.0 milestone release [New Features] - Quite a number of new features, please see docs - Test plugins now have IDs - Config is now optional - Config now has a new format, please see docs - Old config compatibility persists but is deprecated now - Config gen tool can create new style configs easily - Test include/exclude (-t/-s) CLI options added - Version '-v' CLI option added - Updated documentation - New test for 'try, except, continue' - Blacklists items now hove IDs for fine control - New plugin interface for blacklist data [Bug fixes] - Several minor fixes - Fixes to try, except, ... tests - Fixes to include/exclude logic [Behind the Scenes] - lots of changes to make config optional - lots of support for old config deprecation - blacklist test completely re-worked
PreviousNext