InSync
|
5cd1f79864
|
[flake8-bandit] Report all references to suspicious functions (S3) (#15541)
## Summary
Resolves #15522.
## Test Plan
`cargo nextest run` and `cargo insta test`.
---------
Co-authored-by: Dhruv Manilawala <dhruvmanila@gmail.com>
|
2025-01-20 09:02:53 +00:00 |
|
Charlie Marsh
|
18c364d5df
|
[flake8-bandit] Support explicit string concatenations in S310 HTTP detection (#12315)
Closes https://github.com/astral-sh/ruff/issues/12314.
|
2024-07-14 10:44:08 -04:00 |
|
Tim Chan
|
1a3ee45b23
|
[flake8-bandit] Avoid S310 violations for HTTP-safe f-strings (#12305)
this resolves https://github.com/astral-sh/ruff/issues/12245
|
2024-07-13 20:57:05 +00:00 |
|
Charlie Marsh
|
effd5188c9
|
[flake8-bandit] Allow urllib.request.urlopen calls with static Request argument (#10964)
## Summary
Allows, e.g.:
```python
import urllib
urllib.request.urlopen(urllib.request.Request("https://example.com/"))
```
...in
[`suspicious-url-open-usage`](https://docs.astral.sh/ruff/rules/suspicious-url-open-usage/).
See:
https://github.com/astral-sh/ruff/issues/7918#issuecomment-2057661054
|
2024-04-16 02:30:23 +00:00 |
|
Charlie Marsh
|
78d172aad7
|
Remove Python 2-only methods from URLOpen audit (#8047)
These were removed from Bandit on `main` as they don't exist in Python
3.
|
2023-10-18 14:49:54 +00:00 |
|
Charlie Marsh
|
13d6c8237a
|
Avoid flagging HTTP and HTTPS literals in urllib-open (#8046)
Closes https://github.com/astral-sh/ruff/issues/8040.
|
2023-10-18 14:36:06 +00:00 |
|