All Downloads are FREE. Search and download functionalities are using the official Maven repository.

org.sonar.plugins.python.bandit.rules.json Maven / Gradle / Ivy

There is a newer version: 4.23.0.17664
Show newest version
[
  {
    "key": "B101",
    "name": "B101: Test for use of assert",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b101_assert_used.html"
  },
  {
    "key": "B102",
    "name": "B102: Test for the use of exec",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b102_exec_used.html"
  },
  {
    "key": "B103",
    "name": "B103: Test for setting permissive file permissions",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b103_set_bad_file_permissions.html"
  },
  {
    "key": "B104",
    "name": "B104: Test for binding to all interfaces",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b104_hardcoded_bind_all_interfaces.html"
  },
  {
    "key": "B105",
    "name": "B105: Test for use of hard-coded password strings",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b105_hardcoded_password_string.html"
  },
  {
    "key": "B106",
    "name": "B106: Test for use of hard-coded password function arguments",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b106_hardcoded_password_funcarg.html"
  },
  {
    "key": "B107",
    "name": "B107: Test for use of hard-coded password argument defaults",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b107_hardcoded_password_funcdef.html"
  },
  {
    "key": "B108",
    "name": "B108: Test for insecure usage of tmp file/directory",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b108_hardcoded_tmp_directory.html"
  },
  {
    "key": "B109",
    "name": "B109: Test for a password based config option not marked secret",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b109_password_config_option_not_marked_secret.html"
  },
  {
    "key": "B110",
    "name": "B110: Test for a pass in the except block",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b110_try_except_pass.html"
  },
  {
    "key": "B111",
    "name": "B111: Test for the use of rootwrap running as root",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b111_execute_with_run_as_root_equals_true.html"
  },
  {
    "key": "B112",
    "name": "B112: Test for a continue in the except block",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b112_try_except_continue.html"
  },
  {
    "key": "B201",
    "name": "B201: Test for use of flask app with debug set to true",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b201_flask_debug_true.html"
  },
  {
    "key": "B301",
    "name": "B301 blacklist pickle",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b301-pickle"
  },
  {
    "key": "B302",
    "name": "B302 blacklist marshal",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b302-marshal"
  },
  {
    "key": "B303",
    "name": "B303 blacklist md5",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b303-md5"
  },
  {
    "key": "B304",
    "name": "B304 blacklist ciphers",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b304-b305-ciphers-and-modes"
  },
  {
    "key": "B305",
    "name": "B305 blacklist cipher_modes",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b304-b305-ciphers-and-modes"
  },
  {
    "key": "B306",
    "name": "B306 blacklist mktemp_q",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b306-mktemp-q"
  },
  {
    "key": "B307",
    "name": "B307 blacklist eval",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b307-eval"
  },
  {
    "key": "B308",
    "name": "B308 blacklist mark_safe",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b308-mark-safe"
  },
  {
    "key": "B309",
    "name": "B309 blacklist httpsconnection",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b309-httpsconnection"
  },
  {
    "key": "B310",
    "name": "B310 blacklist urllib_urlopen",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b310-urllib-urlopen"
  },
  {
    "key": "B311",
    "name": "B311 blacklist random",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b311-random"
  },
  {
    "key": "B312",
    "name": "B312 blacklist telnetlib",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b312-telnetlib"
  },
  {
    "key": "B313",
    "name": "B313 blacklist xml_bad_celementtree",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b313-b320-xml"
  },
  {
    "key": "B314",
    "name": "B314 blacklist xml_bad_elementtree",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b313-b320-xml"
  },
  {
    "key": "B315",
    "name": "B315 blacklist xml_bad_expatreader",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b313-b320-xml"
  },
  {
    "key": "B316",
    "name": "B316 blacklist xml_bad_expatbuilder",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b313-b320-xml"
  },
  {
    "key": "B317",
    "name": "B317 blacklist xml_bad_sax",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b313-b320-xml"
  },
  {
    "key": "B318",
    "name": "B318 blacklist xml_bad_minidom",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b313-b320-xml"
  },
  {
    "key": "B319",
    "name": "B319 blacklist xml_bad_pulldom",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b313-b320-xml"
  },
  {
    "key": "B320",
    "name": "B320 blacklist xml_bad_etree",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b313-b320-xml"
  },
  {
    "key": "B321",
    "name": "B321 blacklist ftplib",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b321-ftplib"
  },
  {
    "key": "B322",
    "name": "B322 blacklist input",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b322-input"
  },
  {
    "key": "B323",
    "name": "B323 blacklist unverified_context",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b323-unverified-context"
  },
  {
    "key": "B324",
    "name": "B324 blacklist hashlib_new_insecure_functions",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html"
  },
  {
    "key": "B325",
    "name": "B325 blacklist tempnam",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html#b325-tempnam"
  },
  {
    "key": "B401",
    "name": "B401 blacklist import module telnetlib",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b401-import-telnetlib"
  },
  {
    "key": "B402",
    "name": "B402 blacklist import module ftplib",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b402-import-ftplib"
  },
  {
    "key": "B403",
    "name": "B403 blacklist import module pickle",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b403-import-pickle"
  },
  {
    "key": "B404",
    "name": "B404 blacklist import module subprocess",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b404-import-subprocess"
  },
  {
    "key": "B405",
    "name": "B405 blacklist import module xml_etree",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b405-import-xml-etree"
  },
  {
    "key": "B406",
    "name": "B406 blacklist import module xml_sax",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b406-import-xml-sax"
  },
  {
    "key": "B407",
    "name": "B407 blacklist import module xml_expat",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b407-import-xml-expat"
  },
  {
    "key": "B408",
    "name": "B408 blacklist import module xml_minidom",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b408-import-xml-minidom"
  },
  {
    "key": "B409",
    "name": "B409 blacklist import module xml_pulldom",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b409-import-xml-pulldom"
  },
  {
    "key": "B410",
    "name": "B410 blacklist import module lxml",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b410-import-lxml"
  },
  {
    "key": "B411",
    "name": "B411 blacklist import module xmlrpclib",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b411-import-xmlrpclib"
  },
  {
    "key": "B412",
    "name": "B412 blacklist import module httpoxy",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b412-import-httpoxy"
  },
  {
    "key": "B413",
    "name": "B413 blacklist import module pycrypto",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b413-import-pycrypto"
  },
  {
    "key": "B414",
    "name": "B414 blacklist import module pycryptodome",
    "url": "https://bandit.readthedocs.io/en/latest/blacklists/blacklist_imports.html#b414-import-pycryptodome"
  },
  {
    "key": "B501",
    "name": "B501: Test for missing certificate validation",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b501_request_with_no_cert_validation.html"
  },
  {
    "key": "B502",
    "name": "B502: Test for SSL use with bad version used",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b502_ssl_with_bad_version.html"
  },
  {
    "key": "B503",
    "name": "B503: Test for SSL use with bad defaults specified",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b503_ssl_with_bad_defaults.html"
  },
  {
    "key": "B504",
    "name": "B504: Test for SSL use with no version specified",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b504_ssl_with_no_version.html"
  },
  {
    "key": "B505",
    "name": "B505: Test for weak cryptographic key use",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b505_weak_cryptographic_key.html"
  },
  {
    "key": "B506",
    "name": "B506: Test for use of yaml load",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b506_yaml_load.html"
  },
  {
    "key": "B507",
    "name": "B507: Test for missing host key validation",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b507_ssh_no_host_key_verification.html"
  },
  {
    "key": "B601",
    "name": "B601: Test for shell injection within Paramiko",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b601_paramiko_calls.html"
  },
  {
    "key": "B602",
    "name": "B602: Test for use of popen with shell equals true",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b602_subprocess_popen_with_shell_equals_true.html"
  },
  {
    "key": "B603",
    "name": "B603: Test for use of subprocess with shell equals true",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b603_subprocess_without_shell_equals_true.html"
  },
  {
    "key": "B604",
    "name": "B604: Test for any function with shell equals true",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b604_any_other_function_with_shell_equals_true.html"
  },
  {
    "key": "B605",
    "name": "B605: Test for starting a process with a shell",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b605_start_process_with_a_shell.html"
  },
  {
    "key": "B606",
    "name": "B606: Test for starting a process with no shell",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b606_start_process_with_no_shell.html"
  },
  {
    "key": "B607",
    "name": "B607: Test for starting a process with a partial path",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b607_start_process_with_partial_path.html"
  },
  {
    "key": "B608",
    "name": "B608: Test for SQL injection",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b608_hardcoded_sql_expressions.html"
  },
  {
    "key": "B609",
    "name": "B609: Test for use of wildcard injection",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b609_linux_commands_wildcard_injection.html"
  },
  {
    "key": "B610",
    "name": "B610: Potential SQL injection on django extra function",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b610_django_extra_used.html"
  },
  {
    "key": "B611",
    "name": "B611: Potential SQL injection on django RawSQL function",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b611_django_rawsql_used.html"
  },
  {
    "key": "B701",
    "name": "B701: Test for not auto escaping in jinja2",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b701_jinja2_autoescape_false.html"
  },
  {
    "key": "B702",
    "name": "B702: Test for use of mako templates",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b702_use_of_mako_templates.html"
  },
  {
    "key": "B703",
    "name": "B703: Potential XSS on mark_safe function",
    "url": "https://bandit.readthedocs.io/en/latest/plugins/b703_django_mark_safe.html"
  }
]




© 2015 - 2024 Weber Informatics LLC | Privacy Policy