prospector
flake8-bandit
Our great sponsors
prospector | flake8-bandit | |
---|---|---|
3 | 3 | |
1,908 | 111 | |
0.7% | - | |
5.8 | 0.0 | |
13 days ago | 8 months ago | |
Python | Python | |
GNU General Public License v3.0 only | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
prospector
-
The Ruff python linter is insanely good
Just before discovering ruff, I was already migrating to PyCQA/prospector to simplify my configs...
-
Prospector vs running pylint/pycodestyle/mypy/etc individually?
Looking into it, I'm surprised as well. They're also both PyCQA projects, albeit with different maintainers. It's also kind of odd that prospector's pre-commit config runs both prospector and flake8 -- that seems redundant.
flake8-bandit
-
The Ruff python linter is insanely good
flake8-bandit uses bandit behind the scenes: https://github.com/tylerwince/flake8-bandit/blob/main/flake8_bandit.py ruff doesn't and implements the rules directly
-
Python toolkits
flake8-black which uses black for code formatting check.
-
Hardening and Simplifying Python's urlopen
A little disturbing, yes? Bandit agrees. Perhaps you want to consider scanning with that security tool or its related flake8 plugin.
What are some alternatives?
Flake8 - flake8 is a python tool that glues together pycodestyle, pyflakes, mccabe, and third-party plugins to check the style and quality of some python code.
bandit - Bandit is a tool designed to find common security issues in Python code.
Pylint - It's not just a linter that annoys you!
vulnerablecode - A free and open vulnerabilities database and the packages they impact. And the tools to aggregate and correlate these vulnerabilities. Sponsored by NLnet https://nlnet.nl/project/vulnerabilitydatabase/ for https://www.aboutcode.org/ Chat at https://gitter.im/aboutcode-org/vulnerablecode Docs at https://vulnerablecode.readthedocs.org/
pylama - Code audit tool for python.
gosec - Go security checker
PythonBuddy - 1st Online Python Editor With Live Syntax Checking and Execution
content - Security automation content in SCAP, Bash, Ansible, and other formats
mypy - Optional static typing for Python
monkey - Infection Monkey - An open-source adversary emulation platform
dotenv-linter - ⚡️Lightning-fast linter for .env files. Written in Rust 🦀
wazuh-ruleset - Wazuh - Ruleset