Skip to content

[SDL438] Add nosec B404 to subprocess imports for Bandit compliance #33607

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mlukasze merged 1 commit into from
Jan 16, 2026
Merged

[SDL438] Add nosec B404 to subprocess imports for Bandit compliance #33607

mlukasze merged 1 commit into from
Jan 16, 2026

Conversation

@mlukasze
Copy link
Contributor

@mlukasze mlukasze commented Jan 15, 2026

Fix Bandit B404 security warning by adding nosec B404 comments to subprocess imports. Addresses SDL438 - Align Use of Python with Bandit Guidance. Ticket: CVS-177660

@mlukasze
[SDL438] Add nosec B404 to subprocess imports for Bandit compliance
9a2c7ee 
Added # nosec B404 comments to subprocess imports to acknowledge security implications have been reviewed, per Bandit guidance.

Affected files:

- scripts/utils/utils.py

- tools/commit_slider/commit_slider.py

- tools/commit_slider/utils/e2e_preparator.py

- tools/commit_slider/utils/helpers.py
@mlukasze mlukasze requested review from a team as code owners January 15, 2026 06:19
@github-actions github-actions bot added category: tools OpenVINO C++ / Python tools category: dependency_changes Pull requests that update a dependency file labels Jan 15, 2026
@mlukasze mlukasze requested a review from p-wysocki January 15, 2026 06:20
@p-wysocki p-wysocki added this pull request to the merge queue Jan 15, 2026
@github-merge-queue github-merge-queue bot removed this pull request from the merge queue due to failed status checks Jan 15, 2026
@mlukasze mlukasze added this pull request to the merge queue Jan 15, 2026
@github-merge-queue github-merge-queue bot removed this pull request from the merge queue due to failed status checks Jan 15, 2026
@mlukasze mlukasze added this pull request to the merge queue Jan 16, 2026
Merged via the queue into openvinotoolkit:master with commit 00f0d3f Jan 16, 2026
236 of 238 checks passed
@mlukasze mlukasze deleted the CVS-177660 branch January 16, 2026 07:18
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@p-wysocki p-wysocki p-wysocki approved these changes

Assignees

No one assigned

Labels

category: dependency_changes Pull requests that update a dependency file category: tools OpenVINO C++ / Python tools

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mlukasze @p-wysocki