Bandit
latest
Getting Started
Configuration
Test Plugins
Writing Tests
Config Generation
Example Test Plugin
Plugin ID Groupings
Complete Test Plugin Listing
B101: assert_used
B102: exec_used
B103: set_bad_file_permissions
B104: hardcoded_bind_all_interfaces
B105: hardcoded_password_string
B106: hardcoded_password_funcarg
B107: hardcoded_password_default
B108: hardcoded_tmp_directory
B109: password_config_option_not_marked_secret
B110: try_except_pass
B111: execute_with_run_as_root_equals_true
B112: try_except_continue
B113: request_without_timeout
B201: flask_debug_true
B202: tarfile_unsafe_members
B324: hashlib
B501: request_with_no_cert_validation
B502: ssl_with_bad_version
B503: ssl_with_bad_defaults
B504: ssl_with_no_version
B505: weak_cryptographic_key
B506: yaml_load
B507: ssh_no_host_key_verification
B508: snmp_insecure_version
B509: snmp_weak_cryptography
B601: paramiko_calls
B602: subprocess_popen_with_shell_equals_true
B603: subprocess_without_shell_equals_true
B604: any_other_function_with_shell_equals_true
B605: start_process_with_a_shell
B606: start_process_with_no_shell
B607: start_process_with_partial_path
B608: hardcoded_sql_expressions
B609: linux_commands_wildcard_injection
B610: django_extra_used
B611: django_rawsql_used
B612: logging_config_insecure_listen
B701: jinja2_autoescape_false
B702: use_of_mako_templates
B703: django_mark_safe
Blacklist Plugins
Report Formatters
Frequently Asked Questions
Bandit
Test Plugins
B607: start_process_with_partial_path
Edit on GitHub
B607: start_process_with_partial_path
Read the Docs
v: latest
Versions
latest
1.7.5
1.7.4
1.7.3
1.7.2
1.7.1
1.7.0
1.6.3
1.6.2
1.6.1
1.6.0
1.5.1
1.5.0
1.4.0
1.3.0
1.2.0
ericwb-patch-2
Downloads
On Read the Docs
Project Home
Builds