-
Notifications
You must be signed in to change notification settings - Fork 46
/
.bandit.yaml
31 lines (31 loc) · 1.26 KB
/
.bandit.yaml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
profile:
sql:
exclude:
- /commons/c2cgeoportal_commons/alembic/main/
- /commons/c2cgeoportal_commons/alembic/static/
tests:
- B608 # Possible SQL injection vector through string-based query construction.
subprocess:
exclude:
- /commons/c2cgeoportal_commons/testing/
- /commons/tests/
- /geoportal/tests/
- /geoportal/c2cgeoportal_geoportal/scripts/c2cupgrade.py
- /admin/tests/
tests:
- B603 # subprocess call - check for execution of untrusted input.
- B607 # Starting a process with a partial executable path
- B404 # Consider possible security implications associated with call module.
tmp:
exclude:
- /geoportal/c2cgeoportal_geoportal/scripts/c2cupgrade.py
tests:
- B108 # Probable insecure usage of temp file/directory.
skips:
- B101 # Test for use of assert
- B603 # subprocess call - check for execution of untrusted input.
- B607 # Starting a process with a partial executable path
- B608 # Possible SQL injection vector through string-based query construction.
- B108 # Probable insecure usage of temp file/directory.
- B404 # Consider possible security implications associated with call module.
- B113 # Requests call without timeout. Done by c2cwsgiutils