bandit #1107
mamicoAnnotations
3 warnings and 3 notices
|
build (3.8)
The following actions uses node12 which is deprecated and will be forced to run on node16: actions/checkout@v2, actions/setup-python@v1, actions/cache@v1. For more info: https://github.blog/changelog/2023-06-13-github-actions-all-actions-will-run-on-node16-instead-of-node12-by-default/
|
|
build (3.8)
The following actions uses Node.js version which is deprecated and will be forced to run on node20: actions/checkout@v2, actions/setup-python@v1, actions/cache@v1. For more info: https://github.blog/changelog/2024-03-07-github-actions-all-actions-will-run-on-node20-instead-of-node16-by-default/
|
|
Test: blacklist id: B307:
src/design/plone/contenttypes/restapi/services/types/get.py#L195
Use of possibly insecure function - consider using safer ast.literal_eval. more info https://bandit.readthedocs.io/en/1.7.4/blacklists/blacklist_calls.html#b307-eval
|
|
Test: assert_used id: B101:
src/design/plone/contenttypes/restapi/services/scadenziario/post.py#L64
Use of assert detected. The enclosed code will be removed when compiling to optimised byte code. more info https://bandit.readthedocs.io/en/1.7.4/plugins/b101_assert_used.html
|
|
Test: blacklist id: B410:
src/design/plone/contenttypes/upgrades/draftjs_converter.py#L7
Using lxml to parse untrusted XML data is known to be vulnerable to XML attacks. Replace lxml with the equivalent defusedxml package. more info https://bandit.readthedocs.io/en/1.7.4/blacklists/blacklist_imports.html#b410-import-lxml
|
|
Test: try_except_continue id: B112:
src/design/plone/contenttypes/upgrades/upgrades.py#L443
Try, Except, Continue detected. more info https://bandit.readthedocs.io/en/1.7.4/plugins/b112_try_except_continue.html
|