vulnerablecode
flake8-bandit
vulnerablecode | flake8-bandit | |
---|---|---|
2 | 3 | |
473 | 111 | |
1.9% | - | |
8.6 | 0.0 | |
2 days ago | 8 months ago | |
Python | Python | |
Apache License 2.0 | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
vulnerablecode
-
SBOM with VulnerableCode.io
$ git clone https://github.com/nexB/vulnerablecode.git $ cd vulnerablecode $ make envfile $ docker-compose build
- CVE Alerting Platform
flake8-bandit
-
The Ruff python linter is insanely good
flake8-bandit uses bandit behind the scenes: https://github.com/tylerwince/flake8-bandit/blob/main/flake8_bandit.py ruff doesn't and implements the rules directly
-
Python toolkits
flake8-black which uses black for code formatting check.
-
Hardening and Simplifying Python's urlopen
A little disturbing, yes? Bandit agrees. Perhaps you want to consider scanning with that security tool or its related flake8 plugin.
What are some alternatives?
opencve - CVE Alerting Platform
bandit - Bandit is a tool designed to find common security issues in Python code.
vulscan - Advanced vulnerability scanning with Nmap NSE
gosec - Go security checker
CVE-2021-37740 - PoC for DoS vulnerability CVE-2021-37740 in firmware v3.0.3 of SCN-IP100.03 and SCN-IP000.03 by MDT. The bug has been fixed in firmware v3.0.4.
content - Security automation content in SCAP, Bash, Ansible, and other formats
Jira-Lens - Fast and customizable vulnerability scanner For JIRA written in Python
monkey - Infection Monkey - An open-source adversary emulation platform
grype - A vulnerability scanner for container images and filesystems
wazuh-ruleset - Wazuh - Ruleset
Heartbleed - Heartbleed vulnerability exploited 🩸
Check-WP-CVE-2020-35489 - The (WordPress) website test script can be exploited for Unlimited File Upload via CVE-2020-35489