Flake8 plugin adding some checks to make Python code adhere to more secure coding standard

These details have not been verified by PyPI

Project links

Homepage

GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Project description

Flake8 Secure Coding Standard Plugin

CI Build CodeQL

flake8 plugin that enforces some secure coding standards.

Installation

pip install flake8-secure-coding-standard

Flake8 codes

Code	Description
SCS100	Use of `os.path.abspath()` and `os.path.relpath()` should be avoided in favor of `os.path.realpath()`
SCS101	Use of `eval()` and `exec()` represent a security risk and should be avoided
SCS102	Use of `os.system()` should be avoided
SCS103	Use of `shell=True` in subprocess functions should be avoided
SCS104	Use of `tempfile.mktemp()` should be avoided, prefer `tempfile.mkstemp()`
SCS105	Use of `yaml.load()` should be avoided, prefer `yaml.safe_load()` or `yaml.load(xxx, Loader=SafeLoader)`
SCS106	Use of `jsonpickle.decode()` should be avoided
SCS107	Use of debugging code shoud not be present in production code (e.g. `import pdb`)
SCS108	`assert` statements should not be present in production code

Pre-commit hook

See pre-commit for instructions

Sample .pre-commit-config.yaml:

-   repo: https://gitlab.com/pycqa/flake8
    rev: 3.7.8
    hooks:
    -   id: flake8
        additional_dependencies: [flake8-secure-coding-standard]

Project details

These details have not been verified by PyPI

Project links

Homepage

GitHub Statistics

View statistics for this project via Libraries.io, or by using our public dataset on Google BigQuery

Release history Release notifications | RSS feed

1.4.1

Jan 7, 2024

1.4.0

Feb 6, 2023

1.3.0

Jun 2, 2022

1.2.2

May 24, 2022

1.2.1

Jul 19, 2021

1.2.0

Jul 19, 2021

1.1.0

Jul 2, 2021

This version

1.0.1

Jun 21, 2021

1.0.0

Jun 20, 2021

Download files

Download the file for your platform. If you're not sure which to choose, learn more about installing packages.

Source Distribution

flake8-secure-coding-standard-1.0.1.tar.gz (16.5 kB view hashes)

Uploaded Jun 21, 2021 Source

Built Distribution

flake8_secure_coding_standard-1.0.1-py2.py3-none-any.whl (9.0 kB view hashes)

Uploaded Jun 21, 2021 Python 2 Python 3

Hashes for flake8-secure-coding-standard-1.0.1.tar.gz

Hashes for flake8-secure-coding-standard-1.0.1.tar.gz
Algorithm	Hash digest
SHA256	`ec3d92d1844c8e074716fb8ae1f4b1ca9e193520088cf8f048146782beab029a`
MD5	`4c30eb2742e2a170b81c865e13eb16c5`
BLAKE2b-256	`4819e380863d21f8a302ab210b85cd8d2841bee256ee52426e3de536ff22a7d6`

Hashes for flake8_secure_coding_standard-1.0.1-py2.py3-none-any.whl

Hashes for flake8_secure_coding_standard-1.0.1-py2.py3-none-any.whl
Algorithm	Hash digest
SHA256	`7faf73a33a0d9ff02ff4cba6588b590618542e9dd3b8917d23b53db88b4a69b2`
MD5	`52b6132bd2a2ef342d7b6e37489fc978`
BLAKE2b-256	`3b93b524aa987074742722e65a2cbc77954cc65384eff59b0fb49902ec5ea4da`