Navigation:
Browse pkgsrc
(this page)| 2025-03-04 10:15:25 by Thomas Klausner | Files touched by this commit (1) |
Log message: py-bandit: not for Python 3.10 |
2025-02-26 23:07:53 by Adam Ciarcinski | Files touched by this commit (3) |  |
Log message: py-bandit: updated to 1.8.3 1.8.3 * Pytorch fix * B107: Skip None values in hardcoded password detection * Bump docker/setup-buildx-action from 3.8.0 to 3.9.0 * Bump sigstore/cosign-installer from 3.7.0 to 3.8.0 * Warn not error on an nonexistant test given * Add markupsafe.Markup XSS plugin * Update bug template to include latest released versions * [pre-commit.ci] pre-commit autoupdate * Bump docker/build-push-action from 6.12.0 to 6.13.0 * Bump docker/build-push-action from 6.11.0 to 6.12.0 * Bump docker/build-push-action from 6.10.0 to 6.11.0 |
| 2025-01-14 23:44:41 by Adam Ciarcinski | Files touched by this commit (2) | |
Log message: py-bandit: updated to 1.8.2 1.8.2 * Revert "Start testing with 3.14 alphas" 1.8.1 * Clarify "getting started" docs * Remove lxml (B320 & B410) from blacklist * Start testing with 3.14 alphas * [pre-commit.ci] pre-commit autoupdate * Bump docker/setup-buildx-action from 3.7.1 to 3.8.0 * Add Mercedes-Benz to sponsor list * Update the bug template with latest bandit version * Bump docker/build-push-action from 6.9.0 to 6.10.0 |
| 2024-12-27 23:00:59 by Adam Ciarcinski | Files touched by this commit (2) | |
Log message: py-bandit: updated to 1.8.0 1.8.0 * Remove more leftover OpenStack references * Remove Sentry as a sponsor * Add a JSON to seek funding from the FLOSS/fund * [pre-commit.ci] pre-commit autoupdate * Update project urls with added links * Mark Python 3.13 as officially supported * [pre-commit.ci] pre-commit autoupdate * No need to check httpx client without timeout defined * [pre-commit.ci] pre-commit autoupdate * Bump sigstore/cosign-installer from 3.6.0 to 3.7.0 * Bump docker/setup-buildx-action from 3.6.1 to 3.7.1 * Add more insecure cryptography cipher algorithms * Removal of Python 3.8 support * Rename doc file to match proper bandit ID * Bump docker/build-push-action from 6.7.0 to 6.9.0 |
| 2024-11-11 08:29:31 by Thomas Klausner | Files touched by this commit (862) |
Log message: py-*: remove unused tool dependency py-setuptools includes the py-wheel functionality nowadays |
| 2024-10-14 08:46:10 by Thomas Klausner | Files touched by this commit (325) |
Log message: *: clean-up after python38 removal |
| 2024-10-03 11:04:02 by Adam Ciarcinski | Files touched by this commit (3) | |
Log message: py-bandit: updated to 1.7.10 1.7.10 * Pytorch Load / Save Plugin * Use consistent file naming of docs * Bump docker/build-push-action from 6.6.1 to 6.7.0 * Bump sigstore/cosign-installer from 3.5.0 to 3.6.0 * Bump docker/build-push-action from 6.5.0 to 6.6.1 * Bump docker/setup-buildx-action from 3.5.0 to 3.6.1 * Bump docker/build-push-action from 6.3.0 to 6.5.0 * Bump docker/login-action from 3.2.0 to 3.3.0 * Bump docker/setup-buildx-action from 3.4.0 to 3.5.0 * Bump docker/setup-buildx-action from 3.3.0 to 3.4.0 * Bump docker/build-push-action from 6.2.0 to 6.3.0 * Bump docker/build-push-action from 6.1.0 to 6.2.0 * Add recent releases to version choice in bug report * Nit: remove unused variable * feat(plugins): add support for \`httpx\` in \`B113\` * Bump docker/build-push-action from 6.0.0 to 6.1.0 * New check: B113: TrojanSource - Bidirectional control characters * Add test for usage of FTP\_TLS * Performance improvement in blacklist function * Suggested small refactors in assignments * Bump docker/build-push-action from 5.4.0 to 6.0.0 |
| 2024-06-13 07:03:15 by Adam Ciarcinski | Files touched by this commit (2) | |
Log message: py-bandit: updated to 1.7.9 1.7.9 ----- * Support \`configfile\` in \`.bandit\` file * Bump docker/build-push-action from 5.3.0 to 5.4.0 * Guard against empty call argument list * [pre-commit.ci] pre-commit autoupdate * [pre-commit.ci] pre-commit autoupdate * Bump docker/login-action from 3.1.0 to 3.2.0 * Ensure sarif extra is included as part of doc build * Add a sponsor section to README * [pre-commit.ci] pre-commit autoupdate * Updates banner logo so it renders well in dark mode * [pre-commit.ci] pre-commit autoupdate * Bump sigstore/cosign-installer from 3.4.0 to 3.5.0 * [pre-commit.ci] pre-commit autoupdate * Bump docker/setup-buildx-action from 3.2.0 to 3.3.0 * [pre-commit.ci] pre-commit autoupdate * [pre-commit.ci] pre-commit autoupdate * Bump docker/login-action from 3.0.0 to 3.1.0 * Bump docker/setup-buildx-action from 3.1.0 to 3.2.0 * Bump docker/build-push-action from 5.2.0 to 5.3.0 * Start testing on Python 3.13 * New logo for Bandit based on raccoon * [pre-commit.ci] pre-commit autoupdate * Bump docker/build-push-action from 5.1.0 to 5.2.0 |
| 2024-03-09 07:56:18 by Adam Ciarcinski | Files touched by this commit (3) | |
Log message: py-bandit: updated to 1.7.8 1.7.8 * Add a SARIF output formatter * [B605] Add functions that are vulnerable to shell injection. * Bump docker/setup-buildx-action from 3.0.0 to 3.1.0 * filter data is safe for tarfile extractall * Use datetime to avoid updating copyright year * Add 1.7.7 to versions of bug template * Bump sigstore/cosign-installer from 3.3.0 to 3.4.0 * Utilize PyPI's trusted publishing * Incorrect tag naming in readme |
| 2024-02-14 04:37:57 by David H. Gutteridge | Files touched by this commit (1) |
Log message: py-bandit: py-setuptools is also a tool dependency (fix builds) |
New packages: