PyPI - codeaudit - Versions diffs - 0.9.2__py3-none-any.whl → 0.9.3__py3-none-any.whl - Mend

codeaudit 0.9.2py3-none-any.whl → 0.9.3py3-none-any.whl

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (9) hide show

codeaudit/__about__.py CHANGED Viewed

@@ -1,4 +1,4 @@
 # SPDX-FileCopyrightText: 2025-present Maikel Mardjan <mike@bm-support.org>
 #
 # SPDX-License-Identifier: GPL-3.0-or-later
-__version__ = "0.9.2"
+__version__ = "0.9.3"

codeaudit/data/sastchecks.csv CHANGED Viewed

@@ -54,6 +54,7 @@ Shelve module,shelve.open,High,Only loading a shelve from a trusted source is se
 Multiprocessing ,connection.recv,High,Connection.recv() uses pickle
 Multiprocessing ,multiprocessing.connection.Connection,High,Connection.recv() uses pickle
 Zipfile,zipfile.ZipFile,High,Extracting files within a program should never be trusted by default. This issue is detected when the zipfile and/or tarfile module with an extraction method is used.
+Gzip,gzip.open,Medium,Potential resource consumption if the file is untrusted.
 shutil,shutil.unpack_archive,Medium,Extracting files within a program should not be trusted by default.
 shutil,shutil.copy,Medium,Information can be transfered without permission.
 shutil,shutil.copy2,Medium,Information can be transfered without permission.

codeaudit/security_checks.py CHANGED Viewed

@@ -40,8 +40,7 @@ def ast_security_checks():
 def perform_validations(sourcefile):
     """For now a list defined here in this file"""
-    checks = ast_security_checks()
-    #df = pd.DataFrame(security_validations)
+    checks = ast_security_checks()
     constructs = checks['construct'].to_list()
     source = read_in_source_file(sourcefile)

codeaudit/totals.py CHANGED Viewed

@@ -155,7 +155,7 @@ def overview_per_file(python_file):
 def overview_count(df):
-    """returns a dataframe with simple overview of all files"""
+    """returns a dataframe with simple overview for all files"""
     columns_to_sum = [
         "Number_Of_Lines",
         "AST_Nodes",

{codeaudit-0.9.2.dist-info → codeaudit-0.9.3.dist-info}/METADATA RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: codeaudit
-Version: 0.9.2
+Version: 0.9.3
 Summary: Simplified static security checks for Python
 Project-URL: Documentation, https://github.com/nocomplexity/codeaudit#readme
 Project-URL: Issues, https://github.com/nocomplexity/codeaudit/issues
@@ -31,6 +31,7 @@ Description-Content-Type: text/markdown
 [![PyPI - Version](https://img.shields.io/pypi/v/codeaudit.svg)](https://pypi.org/project/codeaudit)
 [![PyPI - Python Version](https://img.shields.io/pypi/pyversions/codeaudit.svg)](https://pypi.org/project/codeaudit)
 [![OpenSSF Best Practices](https://www.bestpractices.dev/projects/10970/badge)](https://www.bestpractices.dev/projects/10970)
+[![PyPI Downloads](https://static.pepy.tech/badge/codeaudit)](https://pepy.tech/projects/codeaudit)
 Python Codeaudit - A modern Python source code analyzer based on distrust.

{codeaudit-0.9.2.dist-info → codeaudit-0.9.3.dist-info}/RECORD RENAMED Viewed

@@ -1,4 +1,4 @@
-codeaudit/__about__.py,sha256=-OcKgQZdiaIfag-0pWz8xuMH01f-FH-JoMrw5piCMUg,144
+codeaudit/__about__.py,sha256=jIE4jASfBZpgGnJjWnCN74eGB6UpgAFQB0RIjCRNCoQ,144
 codeaudit/__init__.py,sha256=YGs6qU0BVHPGtXCS-vfBDLO4TOfJDLTWMgaFDTmi_Iw,157
 codeaudit/altairplots.py,sha256=YFXrJxBjN44Mr2JEGad8h_KjSOYuyzt4YE8JyQr9Kj8,2183
 codeaudit/checkmodules.py,sha256=_oMbidp0iKUYF8yOieFIIiCMQ3nl6qC-OhNDnYclf0Q,4895
@@ -8,12 +8,12 @@ codeaudit/filehelpfunctions.py,sha256=eM-B9JeF3Krx2vaefaqLrCAl-lrtec_fy0NbTkj7a3
 codeaudit/htmlhelpfunctions.py,sha256=-SMsyfF7TRIfJkrUqoJuh7AoG1RVrYFsZfFljoxVHXc,3246
 codeaudit/issuevalidations.py,sha256=Pcl6Xrpak1SDJq7liuYx2Nb0inNeq6s131dF-L40S5w,5607
 codeaudit/reporting.py,sha256=gmRbhoC3mwws1eXWypyUZKeMPm3wcvDqj3aoSaWEfIE,21333
-codeaudit/security_checks.py,sha256=n_FMF2b--vpkX3E4wvFcXr9pJO-_sdUq2NHuj6mvMvw,2208
+codeaudit/security_checks.py,sha256=wEO_A054zXmLccWGREi6cNADa4IgoOPxHsq-Je5iMIY,2167
 codeaudit/simple.css,sha256=QyqcZKLqj4JXByTskabrOEJYfn2L2o8XfTLyeO1RxeI,3210
-codeaudit/totals.py,sha256=yN_IepZte4H5Rk7T8UzJFc_SL4RtzYV_Z1tEC9hEyXg,6357
-codeaudit/data/sastchecks.csv,sha256=qo2B-nR_6eOI0ycASSNvU0jTmclax3OScgybucXQY10,6981
-codeaudit-0.9.2.dist-info/METADATA,sha256=R3ZRlWehkSpMezvrMMJPV4Cl_FeDreLsMivLB2vK8Qs,6953
-codeaudit-0.9.2.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
-codeaudit-0.9.2.dist-info/entry_points.txt,sha256=7w6I8zii62nJHIIF30CRP5g1z8enMqF1pZEDdlw4HcQ,55
-codeaudit-0.9.2.dist-info/licenses/LICENSE.txt,sha256=-5gWaMGKJ54oX8TYP7oeg2zITdTapzyWl9PP0tispuA,34674
-codeaudit-0.9.2.dist-info/RECORD,,
+codeaudit/totals.py,sha256=V809eImKZepsKqKMNr0lNfJ0ILf7qFjS_NrU-veVpm0,6358
+codeaudit/data/sastchecks.csv,sha256=10SaYbM2pljuxWYpq31PUNGqr4NgkIglkVsOMqOj1qk,7060
+codeaudit-0.9.3.dist-info/METADATA,sha256=Ly2qH2DLQCWfzlxp997ULDePFi_dTRPD25RVjyXme2o,7053
+codeaudit-0.9.3.dist-info/WHEEL,sha256=qtCwoSJWgHk21S1Kb4ihdzI2rlJ1ZKaIurTj_ngOhyQ,87
+codeaudit-0.9.3.dist-info/entry_points.txt,sha256=7w6I8zii62nJHIIF30CRP5g1z8enMqF1pZEDdlw4HcQ,55
+codeaudit-0.9.3.dist-info/licenses/LICENSE.txt,sha256=-5gWaMGKJ54oX8TYP7oeg2zITdTapzyWl9PP0tispuA,34674
+codeaudit-0.9.3.dist-info/RECORD,,

{codeaudit-0.9.2.dist-info → codeaudit-0.9.3.dist-info}/WHEEL RENAMED Viewed

File without changes

{codeaudit-0.9.2.dist-info → codeaudit-0.9.3.dist-info}/entry_points.txt RENAMED Viewed

File without changes

{codeaudit-0.9.2.dist-info → codeaudit-0.9.3.dist-info}/licenses/LICENSE.txt RENAMED Viewed

File without changes

codeaudit 0.9.2__py3-none-any.whl → 0.9.3__py3-none-any.whl

codeaudit 0.9.2py3-none-any.whl → 0.9.3py3-none-any.whl