Skip to content

Add initial python checkers#30

Closed
maharshi-deepsource wants to merge 2 commits intoDeepSourceCorp:masterfrom
maharshi-deepsource:checkers/python
Closed

Add initial python checkers#30
maharshi-deepsource wants to merge 2 commits intoDeepSourceCorp:masterfrom
maharshi-deepsource:checkers/python

Conversation

@maharshi-deepsource
Copy link
Contributor

@maharshi-deepsource maharshi-deepsource commented Feb 14, 2025

Test logs:

Testing built-in rules...
./bin/globstar test -d checkers/
Running test case: py-avoid-marksafe.yml
Running test case: py-context-autoescape-off.yml
Running test case: py-empty-aes-key.yml
Running test case: py-filter-issafe.yml
Running test case: py-format-html-param.yml
Running test case: py-insecure-cipher.yml
Running test case: py-insecure-hash-sha1.yml
Running test case: py-safe-string-extend.yml
Running test case: py-tainted-pickle-deserialize.yml
All tests passed%

@maharshi-deepsource
chore: implement checkers for cryptographic functions and insecure
1dedc7b 
deserialization

Signed-off-by: Maharshi Basu <maharshi@deepsource.io>
@vercel
Copy link

vercel bot commented Feb 14, 2025
edited
Loading

The latest updates on your projects. Learn more about Vercel for Git ↗︎

1 Skipped Deployment
Name Status Preview Comments Updated (UTC)
globstar ⬜️ Ignored (Inspect) Visit Preview Feb 14, 2025 6:54pm

@maharshi-deepsource
chore: Add more python security checkers
b66e2ed 
Checkers implemented:

- CSRF exemption decorator
- required_encryption field set to False in Dask
- class extension with custom django expressions
- usage of extra() method to execute SQL queries
- usage of small key sizes in cryptographic schemes

Signed-off-by: Maharshi Basu <maharshi@deepsource.io>
@maharshi-deepsource
Copy link
Contributor Author

maharshi-deepsource commented Feb 14, 2025

New test logs:

Testing built-in rules...
./bin/globstar test -d checkers/
Running test case: py-avoid-marksafe.yml
Running test case: py-context-autoescape-off.yml
Running test case: py-csrf-exempt.yml
Running test case: py-distributed-security-required-encryption.yml
Running test case: py-django-class-custom-extends.yml
Running test case: py-empty-aes-key.yml
Running test case: py-filter-issafe.yml
Running test case: py-format-html-param.yml
Running test case: py-insecure-cipher.yml
Running test case: py-insecure-hash-sha1.yml
Running test case: py-insufficient-keysize.yml
Running test case: py-query-set-extra.yml
Running test case: py-safe-string-extend.yml
Running test case: py-tainted-pickle-deserialize.yml
All tests passed%

@MashyBasker MashyBasker mentioned this pull request Feb 22, 2025
Merged
@MashyBasker
Copy link
Contributor

MashyBasker commented Feb 23, 2025

Reopened after restructure in #60

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@sourya-deepsource sourya-deepsource Awaiting requested review from sourya-deepsource

Assignees

@sourya-deepsource sourya-deepsource

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@maharshi-deepsource @MashyBasker @sourya-deepsource