Skip to content

Commit

Permalink
Update blacklist call documentation (#1045)
Browse files Browse the repository at this point in the history 
- Suggest `secrets` as an alternative to `random`
- Fix typo

Resolves #1023
  • Loading branch information
@costaparas
costaparas committed Aug 17, 2023
1 parent fb2f180 commit 215f014
Showing 1 changed file with 3 additions and 2 deletions.
5 changes: 3 additions & 2 deletions bandit/blacklists/calls.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -9,7 +9,7 @@
This blacklist data checks for a number of Python calls known to have possible
security implications. The following blacklist tests are run against any
function calls encountered in the scanned code base, triggered by encoutering
function calls encountered in the scanned code base, triggered by encountering
ast.Call nodes.
B301: pickle
Expand Down Expand Up @@ -184,7 +184,8 @@
------------
Standard pseudo-random generators are not suitable for security/cryptographic
purposes.
purposes. Consider using the secrets module instead:
https://docs.python.org/library/secrets.html
+------+---------------------+------------------------------------+-----------+
| ID | Name | Calls | Severity |
Expand Down

0 comments on commit 215f014

Please sign in to comment.