Skip to content

Commit dc2ea16

Browse files
committed
fix: bandit removed lxml from deny list
See PyCQA/bandit#1212
1 parent 70b3065 commit dc2ea16

File tree

3 files changed

+3
-7
lines changed

3 files changed

+3
-7
lines changed

.gitlab-ci.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -84,7 +84,7 @@ bandit:
8484
extends: .python_version
8585
stage: lint
8686
script:
87-
- pip install bandit
87+
- pip install bandit>=1.8.1
8888
- bandit -r woob
8989
- bandit -r modules
9090
- bandit -r contrib

modules/.bandit

Lines changed: 1 addition & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,5 +1,5 @@
11
[bandit]
2-
skips = B101,B311,B303,B304,B410,B320,B413,B106,B105,B324
2+
skips = B101,B311,B303,B304,B413,B106,B105,B324
33
# B304: some sites require DES, well this is scraping
44
# B303: some sites require MD5, well this is scraping
55
# B324: some sites require MD5 or SHA1, well this is scraping
@@ -8,5 +8,3 @@ skips = B101,B311,B303,B304,B410,B320,B413,B106,B105,B324
88
# B413: "import Crypto" can be cryptodome, you know?
99
# B101: yes, we do use assert
1010
# B311: we don't need strong random
11-
# B410: no, defusedxml can't replace lxml's xpath implementation
12-
# B320: no, defusedxml can't replace lxml's xpath implementation

woob/.bandit

Lines changed: 1 addition & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,10 +1,8 @@
11
[bandit]
2-
skips = B413,B101,B311,B410,B320,B607,B603,B404,B105,B324,B303
2+
skips = B413,B101,B311,B607,B603,B404,B105,B324,B303
33
# B413: "import Crypto" can be cryptodome, you know?
44
# B101: yes, we do use assert
55
# B311: we don't need strong random
6-
# B410: no, defusedxml can't replace lxml's xpath implementation
7-
# B320: no, defusedxml can't replace lxml's xpath implementation
86
# B607: subprocess with partial path? of course we want PATH
97
# B603: subprocess in general
108
# B404: subprocess in general

0 commit comments

Comments
 (0)