You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
After switching the urlopen and urlsplit imports in json_validation.py from jsonschema.compat (which was internal-only and is now removed) to urllib, bandit complains about using urlopen without rigorously checking the url schema. The only reason it didn't before is due to the indirect import in jsonschema.compat.
For now, I'm just going to mark it as # nosec but we should determine which schemas we need and alter the function to just support those.
After switching the
urlopen
andurlsplit
imports injson_validation.py
fromjsonschema.compat
(which was internal-only and is now removed) tourllib
,bandit
complains about usingurlopen
without rigorously checking the url schema. The only reason it didn't before is due to the indirect import injsonschema.compat
.For now, I'm just going to mark it as
# nosec
but we should determine which schemas we need and alter the function to just support those.relation_engine/relation_engine_server/utils/json_validation.py
Line 168 in bc5c32d
The text was updated successfully, but these errors were encountered: