Mercurial Repositories > eric / file comparison
comparison: eric6/Plugins/CheckerPlugins/CodeStyleChecker/Security/SecurityDefaults.py
eric6/Plugins/CheckerPlugins/CodeStyleChecker/Security/SecurityDefaults.py
- changeset 7615
- ca2949b1a29a
- parent 7614
- 646742c260bd
- child 7616
- 01d646569115
equal
deleted
inserted
replaced
| 7614:646742c260bd | 7615:ca2949b1a29a |
|---|---|
| 6 """ | 6 """ |
| 7 Module implementing the default values for some check modules. | 7 Module implementing the default values for some check modules. |
| 8 """ | 8 """ |
| 9 | 9 |
| 10 SecurityDefaults = { | 10 SecurityDefaults = { |
| 11 # generalHardcodedTmp.py | |
| 11 "hardcoded_tmp_directories": ["/tmp", "/var/tmp", "/dev/shm", "~/tmp"], | 12 "hardcoded_tmp_directories": ["/tmp", "/var/tmp", "/dev/shm", "~/tmp"], |
| 13 | |
| 14 # insecureHashlibNew.py | |
| 12 "insecure_hashes": ['md4', 'md5', 'sha', 'sha1'], | 15 "insecure_hashes": ['md4', 'md5', 'sha', 'sha1'], |
| 16 | |
| 17 # injectionShell.py | |
| 18 # injectionWildcard.py | |
| 13 "shell_injection_subprocess": [ | 19 "shell_injection_subprocess": [ |
| 14 'subprocess.Popen', | 20 'subprocess.Popen', |
| 15 'subprocess.call', | 21 'subprocess.call', |
| 16 'subprocess.check_call', | 22 'subprocess.check_call', |
| 17 'subprocess.check_output', | 23 'subprocess.check_output', |
| 18 'subprocess.run'], | 24 'subprocess.run'], |
| 25 | |
| 26 # injectionShell.py | |
| 27 # injectionWildcard.py | |
| 19 "shell_injection_shell": [ | 28 "shell_injection_shell": [ |
| 20 'os.system', | 29 'os.system', |
| 21 'os.popen', | 30 'os.popen', |
| 22 'os.popen2', | 31 'os.popen2', |
| 23 'os.popen3', | 32 'os.popen3', |
| 27 'popen2.popen4', | 36 'popen2.popen4', |
| 28 'popen2.Popen3', | 37 'popen2.Popen3', |
| 29 'popen2.Popen4', | 38 'popen2.Popen4', |
| 30 'commands.getoutput', | 39 'commands.getoutput', |
| 31 'commands.getstatusoutput'], | 40 'commands.getstatusoutput'], |
| 41 | |
| 42 # injectionShell.py | |
| 32 "shell_injection_noshell": [ | 43 "shell_injection_noshell": [ |
| 33 'os.execl', | 44 'os.execl', |
| 34 'os.execle', | 45 'os.execle', |
| 35 'os.execlp', | 46 'os.execlp', |
| 36 'os.execlpe', | 47 'os.execlpe', |
| 45 'os.spawnv', | 56 'os.spawnv', |
| 46 'os.spawnve', | 57 'os.spawnve', |
| 47 'os.spawnvp', | 58 'os.spawnvp', |
| 48 'os.spawnvpe', | 59 'os.spawnvpe', |
| 49 'os.startfile'], | 60 'os.startfile'], |
| 61 | |
| 62 # insecureSslTls.py | |
| 63 "insecure_ssl_protocol_versions": [ | |
| 64 'PROTOCOL_SSLv2', | |
| 65 'SSLv2_METHOD', | |
| 66 'SSLv23_METHOD', | |
| 67 'PROTOCOL_SSLv3', | |
| 68 'PROTOCOL_TLSv1', | |
| 69 'SSLv3_METHOD', | |
| 70 'TLSv1_METHOD'], | |
| 71 | |
| 72 # tryExcept.py | |
| 73 "check_typed_exception": False, | |
| 50 } | 74 } |
