Mercurial Repositories > eric / file comparison
comparison: src/eric7/Plugins/CheckerPlugins/CodeStyleChecker/Security/SecurityDefaults.py
src/eric7/Plugins/CheckerPlugins/CodeStyleChecker/Security/SecurityDefaults.py
- branch
- eric7
- changeset 9221
- bf71ee032bb4
- parent 9209
- b99e7fd55fd3
- child 9325
- 8157eb19aba5
equal
deleted
inserted
replaced
| 9220:e9e7eca7efee | 9221:bf71ee032bb4 |
|---|---|
| 9 | 9 |
| 10 SecurityDefaults = { | 10 SecurityDefaults = { |
| 11 # generalHardcodedTmp.py | 11 # generalHardcodedTmp.py |
| 12 "hardcoded_tmp_directories": ["/tmp", "/var/tmp", "/dev/shm", "~/tmp"], | 12 "hardcoded_tmp_directories": ["/tmp", "/var/tmp", "/dev/shm", "~/tmp"], |
| 13 # secok | 13 # secok |
| 14 | |
| 15 # insecureHashlibNew.py | 14 # insecureHashlibNew.py |
| 16 "insecure_hashes": ['md4', 'md5', 'sha', 'sha1'], | 15 "insecure_hashes": ["md4", "md5", "sha", "sha1"], |
| 17 | |
| 18 # injectionShell.py | 16 # injectionShell.py |
| 19 # injectionWildcard.py | 17 # injectionWildcard.py |
| 20 "shell_injection_subprocess": [ | 18 "shell_injection_subprocess": [ |
| 21 'subprocess.Popen', | 19 "subprocess.Popen", |
| 22 'subprocess.call', | 20 "subprocess.call", |
| 23 'subprocess.check_call', | 21 "subprocess.check_call", |
| 24 'subprocess.check_output', | 22 "subprocess.check_output", |
| 25 'subprocess.run'], | 23 "subprocess.run", |
| 26 | 24 ], |
| 27 # injectionShell.py | 25 # injectionShell.py |
| 28 # injectionWildcard.py | 26 # injectionWildcard.py |
| 29 "shell_injection_shell": [ | 27 "shell_injection_shell": [ |
| 30 'os.system', | 28 "os.system", |
| 31 'os.popen', | 29 "os.popen", |
| 32 'os.popen2', | 30 "os.popen2", |
| 33 'os.popen3', | 31 "os.popen3", |
| 34 'os.popen4', | 32 "os.popen4", |
| 35 'popen2.popen2', | 33 "popen2.popen2", |
| 36 'popen2.popen3', | 34 "popen2.popen3", |
| 37 'popen2.popen4', | 35 "popen2.popen4", |
| 38 'popen2.Popen3', | 36 "popen2.Popen3", |
| 39 'popen2.Popen4', | 37 "popen2.Popen4", |
| 40 'commands.getoutput', | 38 "commands.getoutput", |
| 41 'commands.getstatusoutput'], | 39 "commands.getstatusoutput", |
| 42 | 40 ], |
| 43 # injectionShell.py | 41 # injectionShell.py |
| 44 "shell_injection_noshell": [ | 42 "shell_injection_noshell": [ |
| 45 'os.execl', | 43 "os.execl", |
| 46 'os.execle', | 44 "os.execle", |
| 47 'os.execlp', | 45 "os.execlp", |
| 48 'os.execlpe', | 46 "os.execlpe", |
| 49 'os.execv', | 47 "os.execv", |
| 50 'os.execve', | 48 "os.execve", |
| 51 'os.execvp', | 49 "os.execvp", |
| 52 'os.execvpe', | 50 "os.execvpe", |
| 53 'os.spawnl', | 51 "os.spawnl", |
| 54 'os.spawnle', | 52 "os.spawnle", |
| 55 'os.spawnlp', | 53 "os.spawnlp", |
| 56 'os.spawnlpe', | 54 "os.spawnlpe", |
| 57 'os.spawnv', | 55 "os.spawnv", |
| 58 'os.spawnve', | 56 "os.spawnve", |
| 59 'os.spawnvp', | 57 "os.spawnvp", |
| 60 'os.spawnvpe', | 58 "os.spawnvpe", |
| 61 'os.startfile'], | 59 "os.startfile", |
| 62 | 60 ], |
| 63 # insecureSslTls.py | 61 # insecureSslTls.py |
| 64 "insecure_ssl_protocol_versions": [ | 62 "insecure_ssl_protocol_versions": [ |
| 65 'PROTOCOL_SSLv2', | 63 "PROTOCOL_SSLv2", |
| 66 'SSLv2_METHOD', | 64 "SSLv2_METHOD", |
| 67 'SSLv23_METHOD', | 65 "SSLv23_METHOD", |
| 68 'PROTOCOL_SSLv3', | 66 "PROTOCOL_SSLv3", |
| 69 'PROTOCOL_TLSv1', | 67 "PROTOCOL_TLSv1", |
| 70 'SSLv3_METHOD', | 68 "SSLv3_METHOD", |
| 71 'TLSv1_METHOD'], | 69 "TLSv1_METHOD", |
| 72 | 70 ], |
| 73 # tryExcept.py | 71 # tryExcept.py |
| 74 "check_typed_exception": False, | 72 "check_typed_exception": False, |
| 75 | |
| 76 # weakCryptographicKey.py | 73 # weakCryptographicKey.py |
| 77 "weak_key_size_dsa_high": 1024, | 74 "weak_key_size_dsa_high": 1024, |
| 78 "weak_key_size_dsa_medium": 2048, | 75 "weak_key_size_dsa_medium": 2048, |
| 79 "weak_key_size_rsa_high": 1024, | 76 "weak_key_size_rsa_high": 1024, |
| 80 "weak_key_size_rsa_medium": 2048, | 77 "weak_key_size_rsa_medium": 2048, |
| 81 "weak_key_size_ec_high": 160, | 78 "weak_key_size_ec_high": 160, |
| 82 "weak_key_size_ec_medium": 224, | 79 "weak_key_size_ec_medium": 224, |
| 83 | |
| 84 } | 80 } |
