Skip to main content

A Bandit formatter for the Static Analysis Results Interchange Format (SARIF) Version 2.1.0 file format.

Project description

SARIF formatter for Bandit

Overview

bandit_sarif_formatter is a report formatter for Bandit, a security analyzer for Python. It produces output in the Static Analysis Results Interchange Format (SARIF) Version 2.1.0 file format, an OASIS Committee Specification.

To learn more about SARIF and find resources for working with it, you can visit the SARIF Home Page.

Building

To build the bandit_sarif_formatter package, see the Python Packaging Authority’s instructions for Packaging Python Projects, in particular the section “Generating distribution archives.”

Briefly: run the following commands from the project root directory:

python -m pip install --user --upgrade setuptools wheel
python setup.py sdist bdist_wheel

The source distribution (.tar.gz) and wheel-style built distribution (.whl) packages appear in the dist/ directory.

Publishing

To publish the bandit_sarif_formatter package, see the section “Uploading the distribution archives” and “Next steps” in Packaging Python Projects.

Briefly: log in to https://pypi-hypernode.com with the TODO account, and then run the following commands from the project root directory:

python -m pip install --user --upgrade twine
python -m twine upload dist/*

Installing

To install the bandit_sarif_formatter package, run the command:

python -m pip install bandit_sarif_formatter

Using

To generate SARIF output from Bandit, run the command:

bandit --format sarif [targets [targets ...]] --output out.sarif

Contributing

This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.opensource.microsoft.com.

When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.

This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.

Project details


Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

bandit_sarif_formatter-1.1.0.tar.gz (7.3 kB view details)

Uploaded Source

Built Distribution

bandit_sarif_formatter-1.1.0-py3-none-any.whl (8.5 kB view details)

Uploaded Python 3

File details

Details for the file bandit_sarif_formatter-1.1.0.tar.gz.

File metadata

  • Download URL: bandit_sarif_formatter-1.1.0.tar.gz
  • Upload date:
  • Size: 7.3 kB
  • Tags: Source
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.14.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/41.2.0 requests-toolbelt/0.9.1 tqdm/4.35.0 CPython/3.7.4

File hashes

Hashes for bandit_sarif_formatter-1.1.0.tar.gz
Algorithm Hash digest
SHA256 4354f2779b18ea4d24466d984934dab3c3c0d4b8c1ac29e2503be11f7c953af5
MD5 a3357b8cffbd0353a4f5c380952d2e26
BLAKE2b-256 886f8a3b3d54578e131f099edf1fa82c4632f62e7011915201badf02381af593

See more details on using hashes here.

File details

Details for the file bandit_sarif_formatter-1.1.0-py3-none-any.whl.

File metadata

  • Download URL: bandit_sarif_formatter-1.1.0-py3-none-any.whl
  • Upload date:
  • Size: 8.5 kB
  • Tags: Python 3
  • Uploaded using Trusted Publishing? No
  • Uploaded via: twine/1.14.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/41.2.0 requests-toolbelt/0.9.1 tqdm/4.35.0 CPython/3.7.4

File hashes

Hashes for bandit_sarif_formatter-1.1.0-py3-none-any.whl
Algorithm Hash digest
SHA256 d87e92c5a087e2c4cb86f3df5c18a6990d94227491da6283970c41f0dd536032
MD5 9e23080337aa3a750343c480a9ce58d7
BLAKE2b-256 d90fb94d5b3809a1a000e2e770b6fcfba50bd3471aeb52840b48ef1615095e3d

See more details on using hashes here.

Supported by

AWS AWS Cloud computing and Security Sponsor Datadog Datadog Monitoring Fastly Fastly CDN Google Google Download Analytics Microsoft Microsoft PSF Sponsor Pingdom Pingdom Monitoring Sentry Sentry Error logging StatusPage StatusPage Status page