SG-29997 Removing Python 2 code #345
6 issue(s) found
Summary of Issues
| Type | Count | Severity | Secure Coding Guidelines |
|---|---|---|---|
| B324: hashlib | 4 | HIGH | |
| B411: blacklist | 1 | HIGH | |
| B311: blacklist | 1 | LOW | PYTH-CRYP-20 |
How do I clear all these issues?
If you suspect these issues are not actual issues, click “Clear All Issues” above. Click here for more details.
Details and Annotations
Details
bandit version 1.7.8
Annotations
Check failure on line 263 in shotgun_api3/lib/httplib2/__init__.py
shotgrid-chorus / security/bandit
B324: hashlib
Use of weak MD5 hash for security. Consider usedforsecurity=False
Check failure on line 477 in shotgun_api3/lib/httplib2/__init__.py
shotgrid-chorus / security/bandit
B324: hashlib
Use of weak MD5 hash for security. Consider usedforsecurity=False
Check notice on line 476 in shotgun_api3/lib/httplib2/__init__.py
shotgrid-chorus / security/bandit
B311: blacklist
Standard pseudo-random generators are not suitable for security/cryptographic purposes.
secure coding id: PYTH-CRYP-20.
Check failure on line 483 in shotgun_api3/lib/httplib2/__init__.py
shotgrid-chorus / security/bandit
B324: hashlib
Use of weak SHA1 hash for security. Consider usedforsecurity=False
Check failure on line 583 in shotgun_api3/lib/httplib2/__init__.py
shotgrid-chorus / security/bandit
B324: hashlib
Use of weak MD5 hash for security. Consider usedforsecurity=False
Check failure on line 49 in shotgun_api3/shotgun.py
shotgrid-chorus / security/bandit
B411: blacklist
Using Error to parse untrusted XML data is known to be vulnerable to XML attacks. Use defusedxml.xmlrpc.monkey_patch() function to monkey-patch xmlrpclib and mitigate XML vulnerabilities.