|
1 | 1 | { |
2 | 2 | "errors": [], |
3 | | - "generated_at": "2020-11-12T15:17:38Z", |
| 3 | + "generated_at": "2020-11-26T11:00:36Z", |
4 | 4 | "metrics": { |
5 | 5 | "./bot.py": { |
6 | 6 | "CONFIDENCE.HIGH": 1.0, |
|
11 | 11 | "SEVERITY.LOW": 1.0, |
12 | 12 | "SEVERITY.MEDIUM": 0.0, |
13 | 13 | "SEVERITY.UNDEFINED": 0.0, |
14 | | - "loc": 1264, |
| 14 | + "loc": 1321, |
15 | 15 | "nosec": 0 |
16 | 16 | }, |
17 | 17 | "./cogs/modmail.py": { |
|
23 | 23 | "SEVERITY.LOW": 0.0, |
24 | 24 | "SEVERITY.MEDIUM": 0.0, |
25 | 25 | "SEVERITY.UNDEFINED": 0.0, |
26 | | - "loc": 1280, |
| 26 | + "loc": 1273, |
27 | 27 | "nosec": 0 |
28 | 28 | }, |
29 | 29 | "./cogs/plugins.py": { |
|
35 | 35 | "SEVERITY.LOW": 1.0, |
36 | 36 | "SEVERITY.MEDIUM": 0.0, |
37 | 37 | "SEVERITY.UNDEFINED": 0.0, |
38 | | - "loc": 572, |
| 38 | + "loc": 578, |
39 | 39 | "nosec": 0 |
40 | 40 | }, |
41 | 41 | "./cogs/utility.py": { |
|
47 | 47 | "SEVERITY.LOW": 1.0, |
48 | 48 | "SEVERITY.MEDIUM": 1.0, |
49 | 49 | "SEVERITY.UNDEFINED": 0.0, |
50 | | - "loc": 1710, |
| 50 | + "loc": 1755, |
51 | 51 | "nosec": 0 |
52 | 52 | }, |
53 | 53 | "./core/_color_data.py": { |
|
63 | 63 | "nosec": 0 |
64 | 64 | }, |
65 | 65 | "./core/changelog.py": { |
66 | | - "CONFIDENCE.HIGH": 0.0, |
| 66 | + "CONFIDENCE.HIGH": 1.0, |
67 | 67 | "CONFIDENCE.LOW": 0.0, |
68 | 68 | "CONFIDENCE.MEDIUM": 0.0, |
69 | 69 | "CONFIDENCE.UNDEFINED": 0.0, |
70 | 70 | "SEVERITY.HIGH": 0.0, |
71 | | - "SEVERITY.LOW": 0.0, |
| 71 | + "SEVERITY.LOW": 1.0, |
72 | 72 | "SEVERITY.MEDIUM": 0.0, |
73 | 73 | "SEVERITY.UNDEFINED": 0.0, |
74 | | - "loc": 145, |
| 74 | + "loc": 155, |
75 | 75 | "nosec": 0 |
76 | 76 | }, |
77 | 77 | "./core/checks.py": { |
|
83 | 83 | "SEVERITY.LOW": 0.0, |
84 | 84 | "SEVERITY.MEDIUM": 0.0, |
85 | 85 | "SEVERITY.UNDEFINED": 0.0, |
86 | | - "loc": 89, |
| 86 | + "loc": 90, |
87 | 87 | "nosec": 0 |
88 | 88 | }, |
89 | 89 | "./core/clients.py": { |
|
95 | 95 | "SEVERITY.LOW": 1.0, |
96 | 96 | "SEVERITY.MEDIUM": 0.0, |
97 | 97 | "SEVERITY.UNDEFINED": 0.0, |
98 | | - "loc": 585, |
| 98 | + "loc": 587, |
99 | 99 | "nosec": 0 |
100 | 100 | }, |
101 | 101 | "./core/config.py": { |
|
107 | 107 | "SEVERITY.LOW": 0.0, |
108 | 108 | "SEVERITY.MEDIUM": 0.0, |
109 | 109 | "SEVERITY.UNDEFINED": 0.0, |
110 | | - "loc": 327, |
| 110 | + "loc": 352, |
111 | 111 | "nosec": 0 |
112 | 112 | }, |
113 | 113 | "./core/decorators.py": { |
|
131 | 131 | "SEVERITY.LOW": 0.0, |
132 | 132 | "SEVERITY.MEDIUM": 0.0, |
133 | 133 | "SEVERITY.UNDEFINED": 0.0, |
134 | | - "loc": 199, |
| 134 | + "loc": 202, |
135 | 135 | "nosec": 0 |
136 | 136 | }, |
137 | 137 | "./core/paginator.py": { |
|
155 | 155 | "SEVERITY.LOW": 0.0, |
156 | 156 | "SEVERITY.MEDIUM": 0.0, |
157 | 157 | "SEVERITY.UNDEFINED": 0.0, |
158 | | - "loc": 993, |
| 158 | + "loc": 996, |
159 | 159 | "nosec": 0 |
160 | 160 | }, |
161 | 161 | "./core/time.py": { |
|
179 | 179 | "SEVERITY.LOW": 0.0, |
180 | 180 | "SEVERITY.MEDIUM": 0.0, |
181 | 181 | "SEVERITY.UNDEFINED": 0.0, |
182 | | - "loc": 283, |
| 182 | + "loc": 282, |
| 183 | + "nosec": 0 |
| 184 | + }, |
| 185 | + "./plugins/kyb3r/modmail-plugins/profanity-filter-master/profanity-filter.py": { |
| 186 | + "CONFIDENCE.HIGH": 0.0, |
| 187 | + "CONFIDENCE.LOW": 0.0, |
| 188 | + "CONFIDENCE.MEDIUM": 0.0, |
| 189 | + "CONFIDENCE.UNDEFINED": 0.0, |
| 190 | + "SEVERITY.HIGH": 0.0, |
| 191 | + "SEVERITY.LOW": 0.0, |
| 192 | + "SEVERITY.MEDIUM": 0.0, |
| 193 | + "SEVERITY.UNDEFINED": 0.0, |
| 194 | + "loc": 81, |
183 | 195 | "nosec": 0 |
184 | 196 | }, |
185 | 197 | "_totals": { |
186 | | - "CONFIDENCE.HIGH": 4.0, |
| 198 | + "CONFIDENCE.HIGH": 5.0, |
187 | 199 | "CONFIDENCE.LOW": 0.0, |
188 | 200 | "CONFIDENCE.MEDIUM": 1.0, |
189 | 201 | "CONFIDENCE.UNDEFINED": 0.0, |
190 | 202 | "SEVERITY.HIGH": 0.0, |
191 | | - "SEVERITY.LOW": 4.0, |
| 203 | + "SEVERITY.LOW": 5.0, |
192 | 204 | "SEVERITY.MEDIUM": 1.0, |
193 | 205 | "SEVERITY.UNDEFINED": 0.0, |
194 | | - "loc": 8989, |
| 206 | + "loc": 9214, |
195 | 207 | "nosec": 0 |
196 | 208 | } |
197 | 209 | }, |
|
226 | 238 | "test_name": "blacklist" |
227 | 239 | }, |
228 | 240 | { |
229 | | - "code": "12 from json import JSONDecodeError, loads\n13 from subprocess import PIPE\n14 from textwrap import indent\n", |
| 241 | + "code": "13 from json import JSONDecodeError, loads\n14 from subprocess import PIPE\n15 from textwrap import indent\n", |
230 | 242 | "filename": "./cogs/utility.py", |
231 | 243 | "issue_confidence": "HIGH", |
232 | 244 | "issue_severity": "LOW", |
233 | 245 | "issue_text": "Consider possible security implications associated with PIPE module.", |
234 | | - "line_number": 13, |
| 246 | + "line_number": 14, |
235 | 247 | "line_range": [ |
236 | | - 13 |
| 248 | + 14 |
237 | 249 | ], |
238 | 250 | "more_info": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b404-import-subprocess", |
239 | 251 | "test_id": "B404", |
240 | 252 | "test_name": "blacklist" |
241 | 253 | }, |
242 | 254 | { |
243 | | - "code": "1985 try:\n1986 exec(to_compile, env) # pylint: disable=exec-used\n1987 except Exception as exc:\n", |
| 255 | + "code": "2039 try:\n2040 exec(to_compile, env) # pylint: disable=exec-used\n2041 except Exception as exc:\n", |
244 | 256 | "filename": "./cogs/utility.py", |
245 | 257 | "issue_confidence": "HIGH", |
246 | 258 | "issue_severity": "MEDIUM", |
247 | 259 | "issue_text": "Use of exec detected.", |
248 | | - "line_number": 1986, |
| 260 | + "line_number": 2040, |
249 | 261 | "line_range": [ |
250 | | - 1986 |
| 262 | + 2040 |
251 | 263 | ], |
252 | 264 | "more_info": "https://bandit.readthedocs.io/en/latest/plugins/b102_exec_used.html", |
253 | 265 | "test_id": "B102", |
254 | 266 | "test_name": "exec_used" |
255 | 267 | }, |
256 | 268 | { |
257 | | - "code": "68 \n69 def __init__(self, bot, access_token: str = \"\", username: str = \"\", **kwargs):\n70 self.bot = bot\n71 self.session = bot.session\n72 self.headers: dict = None\n73 self.access_token = access_token\n74 self.username = username\n75 self.avatar_url: str = kwargs.pop(\"avatar_url\", \"\")\n76 self.url: str = kwargs.pop(\"url\", \"\")\n77 if self.access_token:\n78 self.headers = {\"Authorization\": \"token \" + str(access_token)}\n79 \n80 async def request(\n", |
| 269 | + "code": "2 import re\n3 from subprocess import PIPE\n4 from typing import List\n", |
| 270 | + "filename": "./core/changelog.py", |
| 271 | + "issue_confidence": "HIGH", |
| 272 | + "issue_severity": "LOW", |
| 273 | + "issue_text": "Consider possible security implications associated with PIPE module.", |
| 274 | + "line_number": 3, |
| 275 | + "line_range": [ |
| 276 | + 3 |
| 277 | + ], |
| 278 | + "more_info": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b404-import-subprocess", |
| 279 | + "test_id": "B404", |
| 280 | + "test_name": "blacklist" |
| 281 | + }, |
| 282 | + { |
| 283 | + "code": "67 \n68 def __init__(self, bot, access_token: str = \"\", username: str = \"\", **kwargs):\n69 self.bot = bot\n70 self.session = bot.session\n71 self.headers: dict = None\n72 self.access_token = access_token\n73 self.username = username\n74 self.avatar_url: str = kwargs.pop(\"avatar_url\", \"\")\n75 self.url: str = kwargs.pop(\"url\", \"\")\n76 if self.access_token:\n77 self.headers = {\"Authorization\": \"token \" + str(access_token)}\n78 \n79 @property\n80 def BRANCH(self):\n", |
258 | 284 | "filename": "./core/clients.py", |
259 | 285 | "issue_confidence": "MEDIUM", |
260 | 286 | "issue_severity": "LOW", |
261 | 287 | "issue_text": "Possible hardcoded password: ''", |
262 | | - "line_number": 69, |
| 288 | + "line_number": 68, |
263 | 289 | "line_range": [ |
| 290 | + 68, |
264 | 291 | 69, |
265 | 292 | 70, |
266 | 293 | 71, |
|
0 commit comments