PyCQA/bandit

yaml_load should not be B5xx cryptography group

Open

#306 创建于 2018年5月14日

在 GitHub 查看
 (1 评论) (0 反应) (0 负责人)Python (559 fork)batch import
buggood first issue

仓库指标

Star
 (5,660 star)
PR 合并指标
 (平均合并 11小时 55分钟) (30 天内合并 1 个 PR)

描述

Describe the bug The yaml_load plugin has bandit ID B506. The 5xx group according to [1] is defined as the group for cryptography. This plugin would be more appropriate as a type of injection B6xx

To Reproduce n/a

Expected behavior n/a

Bandit version

bandit 1.4.0

Additional context Add any other context about the problem here.

贡献者指南