Skip to content

Pull requests: PyCQA/bandit

New pull request New
54 Open 593 Closed
54 Open 593 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

fix: clamp severity/confidence index to prevent IndexError (closes #1423)
#1429 opened May 28, 2026 by botbikamordehai2-sketch Loading…
1
chore: improve bandit maintenance path
#1428 opened May 27, 2026 by lphuc2250gma Loading…
Send scan progress to stderr
#1422 opened May 17, 2026 by rogierx Loading…
1
Add B203: zipfile.extractall without path validation (Zip Slip / CWE-22)
#1416 opened May 16, 2026 by gugacyber Loading…
Detect empty-string wildcard host in B104 bind() calls
#1415 opened May 13, 2026 by mokashang Loading…
1
fix: detect unsafe tarfile.extract() in B202
#1414 opened May 12, 2026 by dashitongzhi Loading…
1
3
Detect verify=False on Session/Client instance methods in B501
#1411 opened May 10, 2026 by jonasboos Loading…
1
4
Detect dangerous chmod with stat module constants in B103
#1410 opened May 10, 2026 by jonasboos Loading…
1
5
Detect unsafe tarfile.extract() in B202 plugin
#1409 opened May 10, 2026 by jonasboos Loading…
1
8
Fix #nosec with test ID not counted in Total lines skipped
#1408 opened May 10, 2026 by jonasboos Loading…
1
3
Fix B501 false negative: detect verify=False on Session/Client instances
#1407 opened May 9, 2026 by kimjune01 Loading…
1
Avoid UnicodeEncodeError on narrow-encoding output streams (#1251)
#1406 opened May 2, 2026 by DotChas Loading…
1
Fix exit code for invalid scan targets (#1326)
#1402 opened Apr 28, 2026 by soh2970 Loading…
1
Fix false negatives in hardcoded password detection (B105/B106)
#1385 opened Apr 10, 2026 by GhostbyteX-740 Loading…
1
5
[pre-commit.ci] pre-commit autoupdate
#1370 opened Mar 9, 2026 by pre-commit-ci Bot Loading…
Update B313/B314 XML warning message for Python 3.11+
#1365 opened Mar 2, 2026 by vishnudathks Loading…
1
Fix spurious nosec warning on f-strings with specific test IDs
#1362 opened Feb 17, 2026 by worksbyfriday Contributor Loading…
5 tasks done
1
Fix spurious nosec warnings on multiline statements
#1359 opened Feb 17, 2026 by worksbyfriday Contributor Loading…
1
Update config docs to reflect current as-is behaviour (#528)
#1356 opened Feb 12, 2026 by doctorlard Loading…
Fix B602: Fix IndexError on subprocess calls with keyword arguments
#1342 opened Dec 15, 2025 by balaram753 Loading…
5
Attempt to improve hardcoded password checks for strings
#1340 opened Dec 1, 2025 by alanverresen Contributor Loading…
3
Fix "physicalLocation" calculation for SARIF
#1312 opened Oct 6, 2025 by jerrdasur Loading…
1
2
Add B901 plugin: detect unsafe yaml.load/full_load usage
#1300 opened Sep 16, 2025 by ROSPL07 Loading…
3
SARIF: add partialFingerprints, tags/precision, and ensure absolute Windows paths in artifactLocation.uri
#1297 opened Sep 11, 2025 by Akindotcome Loading…
1
55
fixed bug no version detected in pre-commit installation
#1283 opened Jun 27, 2025 by daniel-mohr Contributor Loading…
5
ProTip! Follow long discussions with comments:>50.