-
-
Notifications
You must be signed in to change notification settings - Fork 786
Pull requests: PyCQA/bandit
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
fix(B202): avoid AttributeError crash when extractall members= callable is not a bare name
#1445
opened Jul 1, 2026 by
Synvoya
Loading…
fix(cli): clamp severity/confidence counts to valid ranking range
#1443
opened Jun 26, 2026 by
itxsamad1
Loading…
B202: detect tarfile extractall imported via a from-import
#1442
opened Jun 24, 2026 by
arpitjain099
Loading…
fix(B614): suppress false positive on non-literal weights_only; add torch.jit.load regression coverage
#1441
opened Jun 22, 2026 by
DevamShah
Loading…
fix(B104): detect empty string '' as wildcard bind address
#1434
opened Jun 9, 2026 by
nilavra17ghosh
Loading…
fix: clamp severity/confidence index to prevent IndexError (closes #1423)
#1429
opened May 28, 2026 by
botbikamordehai2-sketch
Loading…
Add B203: zipfile.extractall without path validation (Zip Slip / CWE-22)
#1416
opened May 16, 2026 by
gugacyber
Loading…
Detect empty-string wildcard host in B104 bind() calls
#1415
opened May 13, 2026 by
mokashang
Loading…
Detect verify=False on Session/Client instance methods in B501
#1411
opened May 10, 2026 by
jonasboos
Loading…
Detect dangerous chmod with stat module constants in B103
#1410
opened May 10, 2026 by
jonasboos
Loading…
Fix #nosec with test ID not counted in Total lines skipped
#1408
opened May 10, 2026 by
jonasboos
Loading…
Fix B501 false negative: detect verify=False on Session/Client instances
#1407
opened May 9, 2026 by
kimjune01
Loading…
Avoid UnicodeEncodeError on narrow-encoding output streams (#1251)
#1406
opened May 2, 2026 by
DotChas
Loading…
Fix false negatives in hardcoded password detection (B105/B106)
#1385
opened Apr 10, 2026 by
GhostbyteX-740
Loading…
Update B313/B314 XML warning message for Python 3.11+
#1365
opened Mar 2, 2026 by
vishnudathks
Loading…
Previous Next
ProTip!
What’s not been updated in a month: updated:<2026-06-01.