bandit

Security oriented static analyser for python code.

These details have been verified by PyPI

Owner

Python Code Quality "Authority"

Maintainers

chair6 ericwb tkelsey

These details have not been verified by PyPI

Project links

Project description

A security linter from PyCQA

Free software: Apache license
Documentation: https://bandit.readthedocs.io/en/latest/
Source: https://github.com/PyCQA/bandit
Bugs: https://github.com/PyCQA/bandit/issues
Contributing: https://github.com/PyCQA/bandit/blob/main/CONTRIBUTING.md

Overview

Bandit is a tool designed to find common security issues in Python code. To do this Bandit processes each file, builds an AST from it, and runs appropriate plugins against the AST nodes. Once Bandit has finished scanning all the files it generates a report.

Bandit was originally developed within the OpenStack Security Project and later rehomed to PyCQA.

Show Your Style

Use our badge in your project’s README!

using Markdown:

[![security: bandit](https://img.shields.io/badge/security-bandit-yellow.svg)](https://github.com/PyCQA/bandit)

using RST:

.. image:: https://img.shields.io/badge/security-bandit-yellow.svg
    :target: https://github.com/PyCQA/bandit
    :alt: Security Status

References

Python AST module documentation: https://docs.python.org/3/library/ast.html

Green Tree Snakes - the missing Python AST docs: https://greentreesnakes.readthedocs.org/en/latest/

Documentation of the various types of AST nodes that Bandit currently covers or could be extended to cover: https://greentreesnakes.readthedocs.org/en/latest/nodes.html

Project details

These details have been verified by PyPI

Owner

Python Code Quality "Authority"

Maintainers

chair6 ericwb tkelsey

These details have not been verified by PyPI

Project links

Release history Release notifications | RSS feed

1.7.10

Sep 23, 2024

1.7.9

Jun 12, 2024

1.7.8

Mar 8, 2024

1.7.7

Jan 23, 2024

1.7.6

Dec 9, 2023

1.7.5

Mar 10, 2023

This version

1.7.4

Mar 4, 2022

1.7.3

Feb 27, 2022

1.7.2

Jan 26, 2022

1.7.1

Nov 12, 2021

1.7.0

Dec 13, 2020

1.6.3 yanked

Dec 6, 2020

Reason this release was yanked:

This version dropped py2 but was still published as a universal wheel, thus causing issues install via py2 pip.

1.6.2

Jul 1, 2019

1.6.1

Jun 15, 2019

1.6.0

May 9, 2019

1.5.1

Sep 6, 2018

1.5.0

Aug 16, 2018

1.4.0

Jan 12, 2017

1.3.0

Dec 2, 2016

1.2.0

Nov 16, 2016

1.1.0

Aug 15, 2016

1.0.1

Apr 5, 2016

0.17.3

Jan 27, 2016

0.17.2

Jan 27, 2016

0.17.0

Dec 17, 2015

0.16.2

Nov 19, 2015

0.16.1

Nov 13, 2015

0.16.0

Nov 13, 2015

0.15.2

Nov 4, 2015

0.15.1

Nov 4, 2015

0.15.0

Oct 29, 2015

0.14.1

Oct 14, 2015

0.14.0

Oct 12, 2015

0.13.2

Aug 14, 2015

0.13.1

Aug 12, 2015

0.13.0

Aug 5, 2015

0.12.0

Jun 29, 2015

0.11.0

May 7, 2015

0.10.1

Mar 25, 2015

0.10.0

Mar 23, 2015

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

bandit-1.7.4.tar.gz (495.1 kB view details)

Uploaded Mar 4, 2022 Source

Built Distribution

bandit-1.7.4-py3-none-any.whl (118.3 kB view details)

Uploaded Mar 4, 2022 Python 3

File details

Details for the file bandit-1.7.4.tar.gz.

File metadata

Download URL: bandit-1.7.4.tar.gz
Upload date: Mar 4, 2022
Size: 495.1 kB
Tags: Source
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.8.0 pkginfo/1.8.2 readme-renderer/32.0 requests/2.27.1 requests-toolbelt/0.9.1 urllib3/1.26.8 tqdm/4.63.0 importlib-metadata/4.11.2 keyring/23.5.0 rfc3986/2.0.0 colorama/0.4.4 CPython/3.9.10

File hashes

Hashes for bandit-1.7.4.tar.gz
Algorithm	Hash digest
SHA256	`2d63a8c573417bae338962d4b9b06fbc6080f74ecd955a092849e1e65c717bd2`
MD5	`d72d9e0ea3bd469d853e437cf4164372`
BLAKE2b-256	`3936a37a2f6f8d0ed8c3bc616616ed5019e1df2680bd8b7df49ceae80fd457de`

See more details on using hashes here.

Provenance

File details

Details for the file bandit-1.7.4-py3-none-any.whl.

File metadata

Download URL: bandit-1.7.4-py3-none-any.whl
Upload date: Mar 4, 2022
Size: 118.3 kB
Tags: Python 3
Uploaded using Trusted Publishing? No
Uploaded via: twine/3.8.0 pkginfo/1.8.2 readme-renderer/32.0 requests/2.27.1 requests-toolbelt/0.9.1 urllib3/1.26.8 tqdm/4.63.0 importlib-metadata/4.11.2 keyring/23.5.0 rfc3986/2.0.0 colorama/0.4.4 CPython/3.9.10

File hashes

Hashes for bandit-1.7.4-py3-none-any.whl
Algorithm	Hash digest
SHA256	`412d3f259dab4077d0e7f0c11f50f650cc7d10db905d98f6520a95a18049658a`
MD5	`216c7b7d203b4162fc064e96c478d5c0`
BLAKE2b-256	`daebff828f4ec32c85e10d9c344e6b7f11bcacfb5d70f2fd16bea6fc1ae6df06`