Flake8 Bandit Save

Automated security testing using bandit and flake8.

Project README

flake8-bandit

Automated security testing built right into your workflow!

You already use flake8 to lint all your code for errors, ensure docstrings are formatted correctly, sort your imports correctly, and much more... so why not ensure you are writing secure code while you're at it? If you already have flake8 installed all it takes is pip install flake8-bandit.

Configuration

To include or exclude tests, use the standard .bandit configuration file. An example valid .bandit config file:

[bandit]
exclude = /frontend,/scripts,/tests,/venv
tests: B101

In this case, we've specified to ignore a number of paths, and to only test for B101.

Note: flake8-bugbear uses bandit default prefix 'B' so this plugin replaces the 'B' with an 'S' for Security. For more information, see https://github.com/PyCQA/flake8-bugbear/issues/37

How's it work?

We use the bandit package from PyCQA for all the security testing.

Open Source Agenda is not affiliated with "Flake8 Bandit" Project. README Source: tylerwince/flake8-bandit

Stars

111

Open Issues

Last Commit

7 months ago

Repository

tylerwince/flake8-bandit

License

MIT

Open Source Agenda Badge

<a href="https://www.opensourceagenda.com/projects/flake8-bandit"><img src="https://www.opensourceagenda.com/projects/flake8-bandit/reviews/badge.svg" alt="Open Source Agenda"></a>

Submit Review Review Your Favorite Project

Submit Resource Articles, Courses, Videos

Submit Article Submit a post to our blog

From the blog

Dec 11, 2022

How to Choose Which Programming Language to Learn First?

From the blog

Dec 11, 2022