PyPI - codeaudit - Versions diffs - 1.6.2__tar.gz → 1.6.4__tar.gz - Mend

codeaudit 1.6.2tar.gz → 1.6.4tar.gz

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (208) hide show

codeaudit-1.6.4/.github/workflows/python-static.yml ADDED Viewed

@@ -0,0 +1,28 @@
+# This workflow will install Python dependencies, run tests and lint with a variety of Python versions
+# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-python
+name: Python Static Analysis
+on: [push, pull_request]
+jobs:
+    build:
+        runs-on: ubuntu-latest
+        strategy:
+            fail-fast: false
+            matrix:
+                python-version: ["3.14"]
+                check: [] # tmp Remove "formatting"
+        steps:
+            - uses: actions/checkout@v4
+            - name: Set up Python ${{ matrix.python-version }}
+              uses: actions/setup-python@v3
+              with:
+                  python-version: ${{ matrix.python-version }}
+            - name: Install dependencies
+              run: |
+                  python -m pip install --upgrade pip tox
+            - name: Test with tox
+              run: |
+                  tox -e ${{ matrix.check }}

codeaudit-1.6.4/.github/workflows/python-test.yml ADDED Viewed

@@ -0,0 +1,28 @@
+# This workflow will install Python dependencies, run tests and lint with a variety of Python versions
+# For more information see: https://docs.github.com/en/actions/automating-builds-and-tests/building-and-testing-python
+name: Python Package Test
+on: [push, pull_request]
+jobs:
+    build:
+        runs-on: ubuntu-latest
+        strategy:
+            fail-fast: false
+            matrix:
+                python-version: ["3.11", "3.12", "3.13", "3.14"]
+        steps:
+            - uses: actions/checkout@v4
+            - name: Set up Python ${{ matrix.python-version }}
+              uses: actions/setup-python@v3
+              with:
+                  python-version: ${{ matrix.python-version }}
+            - name: Install dependencies
+              run: |
+                  python -m pip install --upgrade pip tox
+            - name: Test with tox
+              run: |
+                  export py_ver=$( echo "${{ matrix.python-version }}" | sed 's/\.//')
+                  tox -e py${py_ver}

{codeaudit-1.6.2 → codeaudit-1.6.4}/.gitignore RENAMED Viewed

@@ -145,5 +145,4 @@ dmypy.json
 ## NOCX
 _build/*
 .gitignore
+pyodide

{codeaudit-1.6.2 → codeaudit-1.6.4}/CHANGELOG.md RENAMED Viewed

@@ -1,8 +1,30 @@
 # Change Log
+## Version 1.6.3:
+🚀 Added
+- WASM Test Drive: Updated documentation to highlight the WebAssembly (WASM) version, allowing users to test-drive the tool directly in the browser without local installation.
+- Enhanced FileScan API: The filescan API now returns detailed results on found weaknesses, matching the comprehensive output of the CLI version.
+🛠️ Changed
+- API Refactoring: Extensive refactoring of API functions for better modularity and performance.
+- Version Retrieval: Improved the logic for retrieving version information. Special thanks to @jurgenwigg (#PR16).
+🐞 Fixed
+- Dashboard Reporting: Squashed bugs and improved the reliability of the dashboard reporting APIs.
+- Project Metadata: Implemented fixes and improvements for pyproject.toml configuration.
+📝 Documentation
+- Updated [README.md](https://github.com/nocomplexity/codeaudit/blob/main/README.md) with link to the WASM-based demonstration.
 ## Version 1.6.2:
-## Changelog
 **Added**
 * **Automated Python Testing:** Implemented automation for testing across various Python versions to ensure cross-version compatibility.

{codeaudit-1.6.2 → codeaudit-1.6.4}/PKG-INFO RENAMED Viewed

@@ -1,6 +1,6 @@
 Metadata-Version: 2.4
 Name: codeaudit
-Version: 1.6.2
+Version: 1.6.4
 Summary: A modern Python security source code analyzer (SAST) based on distrust.
 Project-URL: Documentation, https://github.com/nocomplexity/codeaudit#readme
 Project-URL: Issues, https://github.com/nocomplexity/codeaudit/issues
@@ -20,10 +20,16 @@ Classifier: Programming Language :: Python :: 3.13
 Classifier: Programming Language :: Python :: 3.14
 Classifier: Topic :: Security
 Classifier: Topic :: Software Development :: Quality Assurance
-Requires-Python: >=3.8
-Requires-Dist: altair>=5.5
-Requires-Dist: fire>=0.7.0
-Requires-Dist: pandas>=2.3
+Requires-Python: >=3.11
+Requires-Dist: altair==6.0.0
+Requires-Dist: fire==0.7.1
+Requires-Dist: pandas==3.0.2
+Provides-Extra: test
+Requires-Dist: black; extra == 'test'
+Requires-Dist: pylint; extra == 'test'
+Requires-Dist: pytest; extra == 'test'
+Requires-Dist: pytest-cov; extra == 'test'
+Requires-Dist: tox; extra == 'test'
 Description-Content-Type: text/markdown
 # Codeaudit
@@ -82,6 +88,10 @@ Python Code Audit has the following features:
 pip install -U codeaudit
 ```
+If you would like to test this security tool without installing it, simply use the WASM version [available here](https://nocomplexity.com/codeauditapp/dashboardapp.html).
 If you have installed **Python Code Audit** previously and want to ensure you are using the latest validations and features, simply run this command again. Python Code Audit is frequently updated with new checks.

{codeaudit-1.6.2 → codeaudit-1.6.4}/README.md RENAMED Viewed

@@ -54,6 +54,10 @@ Python Code Audit has the following features:
 pip install -U codeaudit
 ```
+If you would like to test this security tool without installing it, simply use the WASM version [available here](https://nocomplexity.com/codeauditapp/dashboardapp.html).
 If you have installed **Python Code Audit** previously and want to ensure you are using the latest validations and features, simply run this command again. Python Code Audit is frequently updated with new checks.

{codeaudit-1.6.2 → codeaudit-1.6.4}/docs/codeauditcommands.md RENAMED Viewed

@@ -1,6 +1,6 @@
 % THIS FILE IS GENERATED! - Use CLIcommands.ipynb to make it better!
 # Commands Overview
-Python Code Audit commands for: version: 1.6.2
+Python Code Audit commands for: version: 1.6.3.dev39+ga990bb23a.d20260411
 ```
 ----------------------------------------------------
  _                    __             _

{codeaudit-1.6.2 → codeaudit-1.6.4}/docs/examples/ca_api_example_basic.ipynb RENAMED Viewed

@@ -36,7 +36,7 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 10,
+   "execution_count": 1,
    "id": "ce7f815a-92f0-4bcb-abf1-526e31115ec7",
    "metadata": {},
    "outputs": [],
@@ -46,17 +46,17 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 11,
+   "execution_count": 2,
    "id": "2b6fd416-4756-4b9b-89d2-587b7805d9a9",
    "metadata": {},
    "outputs": [
     {
      "data": {
       "text/plain": [
-       "{'python_version': '3.13.11', 'python_implementation': 'CPython'}"
+       "{'python_version': '3.14.3', 'python_implementation': 'CPython'}"
       ]
      },
-     "execution_count": 11,
+     "execution_count": 2,
      "metadata": {},
      "output_type": "execute_result"
     }
@@ -81,33 +81,33 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 12,
+   "execution_count": 3,
    "id": "7c3df6ef-1bbf-400b-8b4e-4e5bd0700471",
    "metadata": {},
    "outputs": [],
    "source": [
-    "from codeaudit.api_interfaces import version"
+    "from codeaudit.api_interfaces import version_info"
    ]
   },
   {
    "cell_type": "code",
-   "execution_count": 13,
+   "execution_count": 4,
    "id": "6258c5f0-4002-425d-b643-c6d491eb1335",
    "metadata": {},
    "outputs": [
     {
      "data": {
       "text/plain": [
-       "{'name': 'Python_Code_Audit', 'version': '1.4.1'}"
+       "{'name': 'Python_Code_Audit', 'version': '1.6.3.dev39+ga990bb23a.d20260411'}"
       ]
      },
-     "execution_count": 13,
+     "execution_count": 4,
      "metadata": {},
      "output_type": "execute_result"
     }
    ],
    "source": [
-    "version()"
+    "version_info()"
    ]
   },
   {
@@ -156,7 +156,7 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 14,
+   "execution_count": 5,
    "id": "1e5c0e2d-67f4-4188-ab1f-c7ca3e232f0d",
    "metadata": {},
    "outputs": [],
@@ -166,7 +166,7 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 15,
+   "execution_count": 6,
    "id": "fcd4390b-842b-436e-b1a8-5eb3c98a9cbb",
    "metadata": {},
    "outputs": [],
@@ -176,7 +176,7 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 16,
+   "execution_count": 7,
    "id": "de511475-53b0-4a1c-83e0-f20118ccb39a",
    "metadata": {},
    "outputs": [
@@ -184,8 +184,8 @@
      "data": {
       "text/plain": [
        "{'name': 'Python_Code_Audit',\n",
-       " 'version': '1.4.1',\n",
-       " 'generated_on': '2026-01-06 18:54',\n",
+       " 'version': '1.6.3.dev39+ga990bb23a.d20260411',\n",
+       " 'generated_on': '2026-04-11 13:56',\n",
        " 'pandas_vulnerability_info': [{'id': 'PYSEC-2020-73',\n",
        "   'summary': '',\n",
        "   'details': \"** DISPUTED ** pandas through 1.0.3 can unserialize and execute commands from an untrusted file that is passed to the read_pickle() function, if __reduce__ makes an os.system call. NOTE: third parties dispute this issue because the read_pickle() function is documented as unsafe and it is the user's responsibility to use the function in a secure manner.\",\n",
@@ -193,7 +193,7 @@
        "   'severity': []}]}"
       ]
      },
-     "execution_count": 16,
+     "execution_count": 7,
      "metadata": {},
      "output_type": "execute_result"
     }
@@ -222,7 +222,7 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 19,
+   "execution_count": 8,
    "id": "e9fe4117-0494-452d-9eb5-044be59ea8a8",
    "metadata": {},
    "outputs": [],
@@ -232,7 +232,7 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 20,
+   "execution_count": 9,
    "id": "bdcc1fb0-0efc-4821-ac40-9cc13271af55",
    "metadata": {},
    "outputs": [
@@ -240,8 +240,8 @@
      "data": {
       "text/plain": [
        "{'name': 'Python_Code_Audit',\n",
-       " 'version': '1.4.1',\n",
-       " 'generated_on': '2026-01-06 19:10',\n",
+       " 'version': '1.6.3.dev39+ga990bb23a.d20260411',\n",
+       " 'generated_on': '2026-04-11 13:56',\n",
        " 'requests_vulnerability_info': [{'id': 'GHSA-652x-xj99-gmcc',\n",
        "   'summary': 'Exposure of Sensitive Information to an Unauthorized Actor in Requests',\n",
        "   'details': 'Requests (aka python-requests) before 2.3.0 allows remote servers to obtain sensitive information by reading the Proxy-Authorization header in a redirected request.',\n",
@@ -256,7 +256,7 @@
        "     'score': 'CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N'}]},\n",
        "  {'id': 'GHSA-9wx4-h78v-vm56',\n",
        "   'summary': 'Requests `Session` object does not verify requests after making first request with verify=False',\n",
-       "   'details': 'When making requests through a Requests `Session`, if the first request is made with `verify=False` to disable cert verification, all subsequent requests to the same origin will continue to ignore cert verification regardless of changes to the value of `verify`. This behavior will continue for the lifecycle of the connection in the connection pool.\\n\\n### Remediation\\nAny of these options can be used to remediate the current issue, we highly recommend upgrading as the preferred mitigation.\\n\\n* Upgrade to `requests>=2.32.0`.\\n* For `requests<2.32.0`, avoid setting `verify=False` for the first request to a host while using a Requests Session.\\n* For `requests<2.32.0`, call `close()` on `Session` objects to clear existing connections if `verify=False` is used.\\n\\n### Related Links\\n* https://github.com/psf/requests/pull/6655',\n",
+       "   'details': \"When using a `requests.Session`, if the first request to a given origin is made with `verify=False`, TLS certificate verification may remain disabled for all subsequent requests to that origin, even if `verify=True` is explicitly specified later.\\n\\nThis occurs because the underlying connection is reused from the session's connection pool, causing the initial TLS verification setting to persist for the lifetime of the pooled connection. As a result, applications may unintentionally send requests without certificate verification, leading to potential man-in-the-middle attacks and compromised confidentiality or integrity.\\n\\nThis behavior affects versions of `requests` prior to 2.32.0.\",\n",
        "   'aliases': ['CVE-2024-35195'],\n",
        "   'severity': [{'type': 'CVSS_V3',\n",
        "     'score': 'CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:N'}]},\n",
@@ -268,6 +268,12 @@
        "     'score': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N'},\n",
        "    {'type': 'CVSS_V4',\n",
        "     'score': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N'}]},\n",
+       "  {'id': 'GHSA-gc5v-m9x4-r6x2',\n",
+       "   'summary': 'Requests has Insecure Temp File Reuse in its extract_zipped_paths() utility function',\n",
+       "   'details': '### Impact\\nThe `requests.utils.extract_zipped_paths()` utility function uses a predictable filename when extracting files from zip archives into the system temporary directory. If the target file already exists, it is reused without validation. A local attacker with write access to the temp directory could pre-create a malicious file that would be loaded in place of the legitimate one.\\n\\n### Affected usages\\n**Standard usage of the Requests library is not affected by this vulnerability.** Only applications that call `extract_zipped_paths()` directly are impacted.\\n\\n### Remediation\\nUpgrade to at least Requests 2.33.0, where the library now extracts files to a non-deterministic location.\\n\\nIf developers are unable to upgrade, they can set `TMPDIR` in their environment to a directory with restricted write access.',\n",
+       "   'aliases': ['CVE-2026-25645'],\n",
+       "   'severity': [{'type': 'CVSS_V3',\n",
+       "     'score': 'CVSS:3.1/AV:L/AC:H/PR:L/UI:R/S:U/C:N/I:H/A:N'}]},\n",
        "  {'id': 'GHSA-j8r2-6x86-q33q',\n",
        "   'summary': 'Unintended leak of Proxy-Authorization header in requests',\n",
        "   'details': \"### Impact\\n\\nSince Requests v2.3.0, Requests has been vulnerable to potentially leaking `Proxy-Authorization` headers to destination servers, specifically during redirects to an HTTPS origin. This is a product of how `rebuild_proxies` is used to recompute and [reattach the `Proxy-Authorization` header](https://github.com/psf/requests/blob/f2629e9e3c7ce3c3c8c025bcd8db551101cbc773/requests/sessions.py#L319-L328) to requests when redirected. Note this behavior has _only_ been observed to affect proxied requests when credentials are supplied in the URL user information component (e.g. `https://username:password@proxy:8080`).\\n\\n**Current vulnerable behavior(s):**\\n\\n1. HTTP → HTTPS: **leak**\\n2. HTTPS → HTTP: **no leak**\\n3. HTTPS → HTTPS: **leak**\\n4. HTTP → HTTP: **no leak**\\n\\nFor HTTP connections sent through the proxy, the proxy will identify the header in the request itself and remove it prior to forwarding to the destination server. However when sent over HTTPS, the `Proxy-Authorization` header must be sent in the CONNECT request as the proxy has no visibility into further tunneled requests. This results in Requests forwarding the header to the destination server unintentionally, allowing a malicious actor to potentially exfiltrate those credentials.\\n\\nThe reason this currently works for HTTPS connections in Requests is the `Proxy-Authorization` header is also handled by urllib3 with our usage of the ProxyManager in adapters.py with [`proxy_manager_for`](https://github.com/psf/requests/blob/f2629e9e3c7ce3c3c8c025bcd8db551101cbc773/requests/adapters.py#L199-L235). This will compute the required proxy headers in `proxy_headers` and pass them to the Proxy Manager, avoiding attaching them directly to the Request object. This will be our preferred option going forward for default usage.\\n\\n### Patches\\nStarting in Requests v2.31.0, Requests will no longer attach this header to redirects with an HTTPS destination. This should have no negative impacts on the default behavior of the library as the proxy credentials are already properly being handled by urllib3's ProxyManager.\\n\\nFor users with custom adapters, this _may_ be potentially breaking if you were already working around this behavior. The previous functionality of `rebuild_proxies` doesn't make sense in any case, so we would encourage any users impacted to migrate any handling of Proxy-Authorization directly into their custom adapter.\\n\\n### Workarounds\\nFor users who are not able to update Requests immediately, there is one potential workaround.\\n\\nYou may disable redirects by setting `allow_redirects` to `False` on all calls through Requests top-level APIs. Note that if you're currently relying on redirect behaviors, you will need to capture the 3xx response codes and ensure a new request is made to the redirect destination.\\n```\\nimport requests\\nr = requests.get('http://github.com/', allow_redirects=False)\\n```\\n\\n### Credits\\n\\nThis vulnerability was discovered and disclosed by the following individuals.\\n\\nDennis Brinkrolf, Haxolot (https://haxolot.com/)\\nTobias Funke, (tobiasfunke93@gmail.com)\",\n",
@@ -312,7 +318,7 @@
        "   'severity': []}]}"
       ]
      },
-     "execution_count": 20,
+     "execution_count": 9,
      "metadata": {},
      "output_type": "execute_result"
     }
@@ -331,7 +337,7 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 17,
+   "execution_count": 10,
    "id": "32b48180-42d5-4338-b5b6-1e5f55aad380",
    "metadata": {},
    "outputs": [],
@@ -341,7 +347,7 @@
   },
   {
    "cell_type": "code",
-   "execution_count": 18,
+   "execution_count": 11,
    "id": "51962776-0aa5-4da0-9ab9-0e5dfb94a3a5",
    "metadata": {},
    "outputs": [
@@ -349,8 +355,8 @@
      "data": {
       "text/plain": [
        "{'name': 'Python_Code_Audit',\n",
-       " 'version': '1.4.1',\n",
-       " 'generated_on': '2026-01-06 18:54',\n",
+       " 'version': '1.6.3.dev39+ga990bb23a.d20260411',\n",
+       " 'generated_on': '2026-04-11 13:56',\n",
        " 'validations': [{'name': 'Assertions',\n",
        "   'construct': 'assert',\n",
        "   'severity': 'Low',\n",
@@ -543,6 +549,18 @@
        "   'construct': 'subprocess.run',\n",
        "   'severity': 'Medium',\n",
        "   'info': 'Requires careful input validation to prevent command injection vulnerabilities.'},\n",
+       "  {'name': 'Subprocess Usage',\n",
+       "   'construct': 'subprocess.check_output',\n",
+       "   'severity': 'Medium',\n",
+       "   'info': 'Requires careful input validation to prevent command injection vulnerabilities.'},\n",
+       "  {'name': 'Subprocess Usage',\n",
+       "   'construct': 'subprocess.getstatusoutput',\n",
+       "   'severity': 'Medium',\n",
+       "   'info': 'Requires careful input validation to prevent command injection vulnerabilities.'},\n",
+       "  {'name': 'Subprocess Usage',\n",
+       "   'construct': 'subprocess.getoutput',\n",
+       "   'severity': 'Medium',\n",
+       "   'info': 'Requires careful input validation to prevent command injection vulnerabilities.'},\n",
        "  {'name': 'Tarfile Extraction',\n",
        "   'construct': 'tarfile.TarFile',\n",
        "   'severity': 'High',\n",
@@ -673,7 +691,7 @@
        "   'info': 'These modules are for development only and are not secure for production use.'}]}"
       ]
      },
-     "execution_count": 18,
+     "execution_count": 11,
      "metadata": {},
      "output_type": "execute_result"
     }
@@ -699,7 +717,7 @@
    "name": "python",
    "nbconvert_exporter": "python",
    "pygments_lexer": "ipython3",
-   "version": "3.13.11"
+   "version": "3.14.3"
   }
  },
  "nbformat": 4,

codeaudit-1.6.4/docs/examples/ca_api_example_overview.ipynb ADDED Viewed

@@ -0,0 +1,160 @@
+{
+ "cells": [
+  {
+   "cell_type": "markdown",
+   "id": "a7c7195e-93bf-40c3-88b1-61b7601fad2d",
+   "metadata": {},
+   "source": [
+    "# Example:Security Weaknesses Overview\n",
+    "\n",
+    "This notebook demonstrates how to use the Python Code Audit APIs to generate a visual overview of all detected weaknesses in a file or package.\n",
+    "\n",
+    "The identified security weaknesses are displayed using an [Altair](https://altair-viz.github.io/index.html) radial chart.\n"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": 5,
+   "id": "09e351e8-5a8e-4365-b94a-8f61703ecd04",
+   "metadata": {},
+   "outputs": [],
+   "source": [
+    "from codeaudit.api_interfaces import filescan \n",
+    "from codeaudit.altairplots import weaknesses_radial_overview"
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": 6,
+   "id": "b532b94a-c19c-4203-8eac-dfa04c0f52cf",
+   "metadata": {},
+   "outputs": [],
+   "source": [
+    "demo_file = 'demofile.py'  #Instead of using a single file, you can also use a directory. The file or directory gets scanned on security weaknesses."
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": 9,
+   "id": "44016841-cf88-4e72-82ed-b57f4cc79a04",
+   "metadata": {},
+   "outputs": [],
+   "source": [
+    "result = filescan(demo_file) #The `get_constructs_counts` API call, scans the file or directory and returns a Python dict."
+   ]
+  },
+  {
+   "cell_type": "code",
+   "execution_count": 10,
+   "id": "88bb7d58-b242-43a7-9e87-06d163302bee",
+   "metadata": {},
+   "outputs": [
+    {
+     "data": {
+      "text/html": [
+       "\n",
+       "<style>\n",
+       "  #altair-viz-b5f2daf02c0b4831b838c90c5126e3fd.vega-embed {\n",
+       "    width: 100%;\n",
+       "    display: flex;\n",
+       "  }\n",
+       "\n",
+       "  #altair-viz-b5f2daf02c0b4831b838c90c5126e3fd.vega-embed details,\n",
+       "  #altair-viz-b5f2daf02c0b4831b838c90c5126e3fd.vega-embed details summary {\n",
+       "    position: relative;\n",
+       "  }\n",
+       "</style>\n",
+       "<div id=\"altair-viz-b5f2daf02c0b4831b838c90c5126e3fd\"></div>\n",
+       "<script type=\"text/javascript\">\n",
+       "  var VEGA_DEBUG = (typeof VEGA_DEBUG == \"undefined\") ? {} : VEGA_DEBUG;\n",
+       "  (function(spec, embedOpt){\n",
+       "    let outputDiv = document.currentScript.previousElementSibling;\n",
+       "    if (outputDiv.id !== \"altair-viz-b5f2daf02c0b4831b838c90c5126e3fd\") {\n",
+       "      outputDiv = document.getElementById(\"altair-viz-b5f2daf02c0b4831b838c90c5126e3fd\");\n",
+       "    }\n",
+       "\n",
+       "    const paths = {\n",
+       "      \"vega\": \"https://cdn.jsdelivr.net/npm/vega@6?noext\",\n",
+       "      \"vega-lib\": \"https://cdn.jsdelivr.net/npm/vega-lib?noext\",\n",
+       "      \"vega-lite\": \"https://cdn.jsdelivr.net/npm/vega-lite@6.1.0?noext\",\n",
+       "      \"vega-embed\": \"https://cdn.jsdelivr.net/npm/vega-embed@7?noext\",\n",
+       "    };\n",
+       "\n",
+       "    function maybeLoadScript(lib, version) {\n",
+       "      var key = `${lib.replace(\"-\", \"\")}_version`;\n",
+       "      return (VEGA_DEBUG[key] == version) ?\n",
+       "        Promise.resolve(paths[lib]) :\n",
+       "        new Promise(function(resolve, reject) {\n",
+       "          var s = document.createElement('script');\n",
+       "          document.getElementsByTagName(\"head\")[0].appendChild(s);\n",
+       "          s.async = true;\n",
+       "          s.onload = () => {\n",
+       "            VEGA_DEBUG[key] = version;\n",
+       "            return resolve(paths[lib]);\n",
+       "          };\n",
+       "          s.onerror = () => reject(`Error loading script: ${paths[lib]}`);\n",
+       "          s.src = paths[lib];\n",
+       "        });\n",
+       "    }\n",
+       "\n",
+       "    function showError(err) {\n",
+       "      outputDiv.innerHTML = `<div class=\"error\" style=\"color:red;\">${err}</div>`;\n",
+       "      throw err;\n",
+       "    }\n",
+       "\n",
+       "    function displayChart(vegaEmbed) {\n",
+       "      vegaEmbed(outputDiv, spec, embedOpt)\n",
+       "        .catch(err => showError(`Javascript Error: ${err.message}<br>This usually means there's a typo in your chart specification. See the javascript console for the full traceback.`));\n",
+       "    }\n",
+       "\n",
+       "    if(typeof define === \"function\" && define.amd) {\n",
+       "      requirejs.config({paths});\n",
+       "      let deps = [\"vega-embed\"];\n",
+       "      require(deps, displayChart, err => showError(`Error loading script: ${err.message}`));\n",
+       "    } else {\n",
+       "      maybeLoadScript(\"vega\", \"6\")\n",
+       "        .then(() => maybeLoadScript(\"vega-lite\", \"6.1.0\"))\n",
+       "        .then(() => maybeLoadScript(\"vega-embed\", \"7\"))\n",
+       "        .catch(showError)\n",
+       "        .then(() => displayChart(vegaEmbed));\n",
+       "    }\n",
+       "  })({\"config\": {\"view\": {\"continuousWidth\": 300, \"continuousHeight\": 300}}, \"data\": {\"name\": \"data-5bbceaf43b279ecf4bbafab4c9e368b4\"}, \"mark\": {\"type\": \"arc\", \"innerRadius\": 20}, \"encoding\": {\"color\": {\"field\": \"legend_label\", \"legend\": {\"title\": \"Weaknesses (Count)\"}, \"scale\": {\"scheme\": \"category20\"}, \"type\": \"nominal\"}, \"radius\": {\"field\": \"count\", \"scale\": {\"type\": \"sqrt\", \"zero\": true}, \"type\": \"quantitative\"}, \"theta\": {\"field\": \"theta1\", \"stack\": null, \"title\": null, \"type\": \"quantitative\"}, \"theta2\": {\"field\": \"theta0\"}, \"tooltip\": [{\"field\": \"construct\", \"type\": \"nominal\"}, {\"field\": \"count\", \"type\": \"quantitative\"}]}, \"height\": 600, \"title\": \"Overview of Security Weaknesses\", \"width\": 600, \"$schema\": \"https://vega.github.io/schema/vega-lite/v6.1.0.json\", \"datasets\": {\"data-5bbceaf43b279ecf4bbafab4c9e368b4\": [{\"construct\": \"tarfile.TarFile\", \"count\": 6, \"legend_label\": \"tarfile.TarFile (6)\", \"fraction\": 0.09523809523809523, \"theta0\": 0.0, \"theta1\": 0.09523809523809523}, {\"construct\": \"os.fork\", \"count\": 3, \"legend_label\": \"os.fork (3)\", \"fraction\": 0.047619047619047616, \"theta0\": 0.09523809523809523, \"theta1\": 0.14285714285714285}, {\"construct\": \"assert\", \"count\": 2, \"legend_label\": \"assert (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.14285714285714285, \"theta1\": 0.1746031746031746}, {\"construct\": \"exec\", \"count\": 2, \"legend_label\": \"exec (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.1746031746031746, \"theta1\": 0.20634920634920634}, {\"construct\": \"pass\", \"count\": 2, \"legend_label\": \"pass (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.20634920634920634, \"theta1\": 0.23809523809523808}, {\"construct\": \"s.bind\", \"count\": 2, \"legend_label\": \"s.bind (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.23809523809523808, \"theta1\": 0.2698412698412698}, {\"construct\": \"logging.config\", \"count\": 2, \"legend_label\": \"logging.config (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.2698412698412698, \"theta1\": 0.30158730158730157}, {\"construct\": \"lzma.open\", \"count\": 2, \"legend_label\": \"lzma.open (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.30158730158730157, \"theta1\": 0.3333333333333333}, {\"construct\": \"base64\", \"count\": 2, \"legend_label\": \"base64 (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.3333333333333333, \"theta1\": 0.36507936507936506}, {\"construct\": \"os.access\", \"count\": 2, \"legend_label\": \"os.access (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.36507936507936506, \"theta1\": 0.3968253968253968}, {\"construct\": \"hashlib.sha1\", \"count\": 2, \"legend_label\": \"hashlib.sha1 (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.3968253968253968, \"theta1\": 0.42857142857142855}, {\"construct\": \"pickle.loads\", \"count\": 2, \"legend_label\": \"pickle.loads (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.42857142857142855, \"theta1\": 0.4603174603174603}, {\"construct\": \"sys.settrace\", \"count\": 2, \"legend_label\": \"sys.settrace (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.4603174603174603, \"theta1\": 0.49206349206349204}, {\"construct\": \"sys.setprofile\", \"count\": 2, \"legend_label\": \"sys.setprofile (2)\", \"fraction\": 0.031746031746031744, \"theta0\": 0.492063492063492, \"theta1\": 0.5238095238095237}, {\"construct\": \"os.forkpty\", \"count\": 1, \"legend_label\": \"os.forkpty (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.5238095238095237, \"theta1\": 0.5396825396825395}, {\"construct\": \"xmlrpc.server.SimpleXMLRPCServer\", \"count\": 1, \"legend_label\": \"xmlrpc.server.SimpleXMLRPCServer (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.5396825396825395, \"theta1\": 0.5555555555555554}, {\"construct\": \"os.popen\", \"count\": 1, \"legend_label\": \"os.popen (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.5555555555555554, \"theta1\": 0.5714285714285712}, {\"construct\": \"os.system\", \"count\": 1, \"legend_label\": \"os.system (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.5714285714285712, \"theta1\": 0.587301587301587}, {\"construct\": \"os.write\", \"count\": 1, \"legend_label\": \"os.write (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.587301587301587, \"theta1\": 0.6031746031746028}, {\"construct\": \"os.writev\", \"count\": 1, \"legend_label\": \"os.writev (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.6031746031746028, \"theta1\": 0.6190476190476186}, {\"construct\": \"continue\", \"count\": 1, \"legend_label\": \"continue (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.6190476190476186, \"theta1\": 0.6349206349206344}, {\"construct\": \"tempfile.mktemp\", \"count\": 1, \"legend_label\": \"tempfile.mktemp (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.6349206349206344, \"theta1\": 0.6507936507936503}, {\"construct\": \"hashlib.md5\", \"count\": 1, \"legend_label\": \"hashlib.md5 (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.6507936507936503, \"theta1\": 0.6666666666666661}, {\"construct\": \"compile\", \"count\": 1, \"legend_label\": \"compile (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.6666666666666661, \"theta1\": 0.6825396825396819}, {\"construct\": \"shutil.rmtree\", \"count\": 1, \"legend_label\": \"shutil.rmtree (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.6825396825396819, \"theta1\": 0.6984126984126977}, {\"construct\": \"shutil.copy\", \"count\": 1, \"legend_label\": \"shutil.copy (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.6984126984126977, \"theta1\": 0.7142857142857135}, {\"construct\": \"http.server.BaseHTTPRequestHandler\", \"count\": 1, \"legend_label\": \"http.server.BaseHTTPRequestHandler (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.7142857142857135, \"theta1\": 0.7301587301587293}, {\"construct\": \"shutil.unpack_archive\", \"count\": 1, \"legend_label\": \"shutil.unpack_archive (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.7301587301587293, \"theta1\": 0.7460317460317452}, {\"construct\": \"random.random\", \"count\": 1, \"legend_label\": \"random.random (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.7460317460317452, \"theta1\": 0.761904761904761}, {\"construct\": \"random.seed\", \"count\": 1, \"legend_label\": \"random.seed (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.761904761904761, \"theta1\": 0.7777777777777768}, {\"construct\": \"connection.recv\", \"count\": 1, \"legend_label\": \"connection.recv (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.7777777777777768, \"theta1\": 0.7936507936507926}, {\"construct\": \"os.chmod\", \"count\": 1, \"legend_label\": \"os.chmod (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.7936507936507926, \"theta1\": 0.8095238095238084}, {\"construct\": \"eval\", \"count\": 1, \"legend_label\": \"eval (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.8095238095238084, \"theta1\": 0.8253968253968242}, {\"construct\": \"marshal.loads\", \"count\": 1, \"legend_label\": \"marshal.loads (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.8253968253968242, \"theta1\": 0.8412698412698401}, {\"construct\": \"os.makedirs\", \"count\": 1, \"legend_label\": \"os.makedirs (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.8412698412698401, \"theta1\": 0.8571428571428559}, {\"construct\": \"shelve.open\", \"count\": 1, \"legend_label\": \"shelve.open (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.8571428571428559, \"theta1\": 0.8730158730158717}, {\"construct\": \"bz2.BZ2File\", \"count\": 1, \"legend_label\": \"bz2.BZ2File (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.8730158730158717, \"theta1\": 0.8888888888888875}, {\"construct\": \"bz2.open\", \"count\": 1, \"legend_label\": \"bz2.open (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.8888888888888875, \"theta1\": 0.9047619047619033}, {\"construct\": \"gzip.open\", \"count\": 1, \"legend_label\": \"gzip.open (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.9047619047619033, \"theta1\": 0.9206349206349191}, {\"construct\": \"lzma.LZMAFile\", \"count\": 1, \"legend_label\": \"lzma.LZMAFile (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.9206349206349191, \"theta1\": 0.936507936507935}, {\"construct\": \"pickle.load\", \"count\": 1, \"legend_label\": \"pickle.load (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.936507936507935, \"theta1\": 0.9523809523809508}, {\"construct\": \"zipfile.ZipFile\", \"count\": 1, \"legend_label\": \"zipfile.ZipFile (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.9523809523809508, \"theta1\": 0.9682539682539666}, {\"construct\": \"xmlrpc.client\", \"count\": 1, \"legend_label\": \"xmlrpc.client (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.9682539682539666, \"theta1\": 0.9841269841269824}, {\"construct\": \"marshal.load\", \"count\": 1, \"legend_label\": \"marshal.load (1)\", \"fraction\": 0.015873015873015872, \"theta0\": 0.9841269841269824, \"theta1\": 0.9999999999999982}]}}, {\"mode\": \"vega-lite\"});\n",
+       "</script>"
+      ],
+      "text/plain": [
+       "alt.Chart(...)"
+      ]
+     },
+     "execution_count": 10,
+     "metadata": {},
+     "output_type": "execute_result"
+    }
+   ],
+   "source": [
+    "chart = weaknesses_radial_overview(result) \n",
+    "chart"
+   ]
+  }
+ ],
+ "metadata": {
+  "kernelspec": {
+   "display_name": "Python 3 (ipykernel)",
+   "language": "python",
+   "name": "python3"
+  },
+  "language_info": {
+   "codemirror_mode": {
+    "name": "ipython",
+    "version": 3
+   },
+   "file_extension": ".py",
+   "mimetype": "text/x-python",
+   "name": "python",
+   "nbconvert_exporter": "python",
+   "pygments_lexer": "ipython3",
+   "version": "3.14.3"
+  }
+ },
+ "nbformat": 4,
+ "nbformat_minor": 5
+}

codeaudit 1.6.2__tar.gz → 1.6.4__tar.gz

codeaudit 1.6.2tar.gz → 1.6.4tar.gz