July 2017
Beginner to intermediate
340 pages
7h 43m
English
Content preview from Python Microservices Development
Become an O’Reilly member and get unlimited access to this title plus top books and audiobooks from O’Reilly and nearly 200 top publishers, thousands of courses curated by job role, 150+ live events each month,
Start your free trial
Using Bandit linter
The OpenStack community (https://www.openstack.org/) created a nice little security linter called Bandit to try to catch insecure code (https://wiki.openstack.org/wiki/Security/Projects/Bandit).
The tool uses the ast module to parse the code such as Flake8 or other linters. Bandit will scan for some known security issues in your code.
Once you've installed it with the pip install bandit command, you can run it against your Python module using the bandit command.
The following script is an example of three unsafe functions. The first one will let you load YAML content that might instantiate arbitrary objects, and the following ones are prone to injection attacks:
import subprocess from sqlalchemy import create_engine from ...