flake8-bandit
vulnerablecode
Our great sponsors
flake8-bandit | vulnerablecode | |
---|---|---|
3 | 2 | |
111 | 469 | |
- | 1.9% | |
0.0 | 8.8 | |
7 months ago | 3 days ago | |
Python | Python | |
MIT License | Apache License 2.0 |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
flake8-bandit
-
The Ruff python linter is insanely good
flake8-bandit uses bandit behind the scenes: https://github.com/tylerwince/flake8-bandit/blob/main/flake8_bandit.py ruff doesn't and implements the rules directly
-
Python toolkits
flake8-black which uses black for code formatting check.
-
Hardening and Simplifying Python's urlopen
A little disturbing, yes? Bandit agrees. Perhaps you want to consider scanning with that security tool or its related flake8 plugin.
vulnerablecode
-
SBOM with VulnerableCode.io
$ git clone https://github.com/nexB/vulnerablecode.git $ cd vulnerablecode $ make envfile $ docker-compose build
- CVE Alerting Platform
What are some alternatives?
bandit - Bandit is a tool designed to find common security issues in Python code.
opencve - CVE Alerting Platform
gosec - Go security checker
vulscan - Advanced vulnerability scanning with Nmap NSE
content - Security automation content in SCAP, Bash, Ansible, and other formats
CVE-2021-37740 - PoC for DoS vulnerability CVE-2021-37740 in firmware v3.0.3 of SCN-IP100.03 and SCN-IP000.03 by MDT. The bug has been fixed in firmware v3.0.4.
monkey - Infection Monkey - An open-source adversary emulation platform
Jira-Lens - Fast and customizable vulnerability scanner For JIRA written in Python
wazuh-ruleset - Wazuh - Ruleset
grype - A vulnerability scanner for container images and filesystems
Check-WP-CVE-2020-35489 - The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489
Heartbleed - Heartbleed vulnerability exploited 🩸