A Bandit formatter for the Static Analysis Results Interchange Format (SARIF) Version 2.1.0 file format.
Project description
SARIF formatter for Bandit
Overview
bandit_sarif_formatter is a report formatter for Bandit, a security analyzer for Python. It produces output in the Static Analysis Results Interchange Format (SARIF) Version 2.1.0 file format, an OASIS Committee Specification.
To learn more about SARIF and find resources for working with it, you can visit the SARIF Home Page.
Building
To build the bandit_sarif_formatter package, see the Python Packaging Authority’s instructions for Packaging Python Projects, in particular the section “Generating distribution archives.”
Briefly: run the following commands from the project root directory:
python -m pip install --user --upgrade setuptools wheel python setup.py sdist bdist_wheel
The source distribution (.tar.gz) and wheel-style built distribution (.whl) packages appear in the dist/ directory.
Publishing
To publish the bandit_sarif_formatter package, see the section “Uploading the distribution archives” and “Next steps” in Packaging Python Projects.
Briefly: log in to https://pypi-hypernode.com with the TODO account, and then run the following commands from the project root directory:
python -m pip install --user --upgrade twine python -m twine upload dist/*
Installing
To install the bandit_sarif_formatter package, run the command:
python -m pip install bandit_sarif_formatter
Using
To generate SARIF output from Bandit, run the command:
bandit --format sarif [targets [targets ...]] --output out.sarif
Contributing
This project welcomes contributions and suggestions. Most contributions require you to agree to a Contributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us the rights to use your contribution. For details, visit https://cla.opensource.microsoft.com.
When you submit a pull request, a CLA bot will automatically determine whether you need to provide a CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions provided by the bot. You will only need to do this once across all repos using our CLA.
This project has adopted the Microsoft Open Source Code of Conduct. For more information see the Code of Conduct FAQ or contact opencode@microsoft.com with any additional questions or comments.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
Built Distribution
File details
Details for the file bandit_sarif_formatter-1.1.0.tar.gz
.
File metadata
- Download URL: bandit_sarif_formatter-1.1.0.tar.gz
- Upload date:
- Size: 7.3 kB
- Tags: Source
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/1.14.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/41.2.0 requests-toolbelt/0.9.1 tqdm/4.35.0 CPython/3.7.4
File hashes
Algorithm | Hash digest | |
---|---|---|
SHA256 | 4354f2779b18ea4d24466d984934dab3c3c0d4b8c1ac29e2503be11f7c953af5 |
|
MD5 | a3357b8cffbd0353a4f5c380952d2e26 |
|
BLAKE2b-256 | 886f8a3b3d54578e131f099edf1fa82c4632f62e7011915201badf02381af593 |
File details
Details for the file bandit_sarif_formatter-1.1.0-py3-none-any.whl
.
File metadata
- Download URL: bandit_sarif_formatter-1.1.0-py3-none-any.whl
- Upload date:
- Size: 8.5 kB
- Tags: Python 3
- Uploaded using Trusted Publishing? No
- Uploaded via: twine/1.14.0 pkginfo/1.5.0.1 requests/2.22.0 setuptools/41.2.0 requests-toolbelt/0.9.1 tqdm/4.35.0 CPython/3.7.4
File hashes
Algorithm | Hash digest | |
---|---|---|
SHA256 | d87e92c5a087e2c4cb86f3df5c18a6990d94227491da6283970c41f0dd536032 |
|
MD5 | 9e23080337aa3a750343c480a9ce58d7 |
|
BLAKE2b-256 | d90fb94d5b3809a1a000e2e770b6fcfba50bd3471aeb52840b48ef1615095e3d |