language-servers/ruff - Forgejo: Beyond coding. We Forge.

language-servers/ruff

Fork 0

mirror of https://github.com/astral-sh/ruff.git synced 2025-10-01 22:31:47 +00:00

Commit graph

Author SHA1 Message Date

Author	SHA1	Message	Date
Mauro Fontana	4da6936ec4	[`flake8-bandit`] Allow raw strings in `suspicious-mark-safe-usage` (`S308`) #16702 (#16770 ) ## Summary Stop flagging each invocation of `django.utils.safestring.mark_safe` (also available at, `django.utils.html.mark_safe`) as an error. Instead, allow string literals as valid uses for `mark_safe`. Also, update the documentation, pointing at `django.utils.html.format_html` for dynamic content generation use cases. Closes #16702 ## Test Plan I verified several possible uses, but string literals, are still flagged. --------- Co-authored-by: Micha Reiser <micha@reiser.io>	2025-03-17 11:29:07 +01:00
InSync	5cd1f79864	[`flake8-bandit`] Report all references to suspicious functions (`S3`) (#15541 ) ## Summary Resolves #15522. ## Test Plan `cargo nextest run` and `cargo insta test`. --------- Co-authored-by: Dhruv Manilawala <dhruvmanila@gmail.com>	2025-01-20 09:02:53 +00:00
Charlie Marsh	f76a3e8502	Detect `mark_safe` usages in decorators (#9887 ) ## Summary Django's `mark_safe` can also be used as a decorator, so we should detect usages of `@mark_safe` for the purpose of the relevant Bandit rule. Closes https://github.com/astral-sh/ruff/issues/9780.	2024-02-07 23:10:46 -05:00

Mauro Fontana

4da6936ec4

[flake8-bandit] Allow raw strings in suspicious-mark-safe-usage (S308) #16702 (#16770 )

## Summary
Stop flagging each invocation of `django.utils.safestring.mark_safe`
(also available at, `django.utils.html.mark_safe`) as an error.

Instead, allow string literals as valid uses for `mark_safe`.

Also, update the documentation, pointing at
`django.utils.html.format_html` for dynamic content generation use
cases.

Closes #16702 

## Test Plan
I verified several possible uses, but string literals, are still
flagged.

---------

Co-authored-by: Micha Reiser <micha@reiser.io>

2025-03-17 11:29:07 +01:00

InSync

5cd1f79864

[flake8-bandit] Report all references to suspicious functions (S3) (#15541 )

## Summary

Resolves #15522.

## Test Plan

`cargo nextest run` and `cargo insta test`.

---------

Co-authored-by: Dhruv Manilawala <dhruvmanila@gmail.com>

2025-01-20 09:02:53 +00:00

Charlie Marsh

f76a3e8502

Detect mark_safe usages in decorators (#9887 )

## Summary

Django's `mark_safe` can also be used as a decorator, so we should
detect usages of `@mark_safe` for the purpose of the relevant Bandit
rule.

Closes https://github.com/astral-sh/ruff/issues/9780.

2024-02-07 23:10:46 -05:00

3 commits