Mercurial Repositories > eric / file diff

--- a/src/eric7/Plugins/CheckerPlugins/CodeStyleChecker/Security/translations.py	Tue Jan 16 14:35:46 2024 +0100
+++ b/src/eric7/Plugins/CheckerPlugins/CodeStyleChecker/Security/translations.py	Tue Jan 16 18:24:06 2024 +0100
@@ -106,12 +106,6 @@
         "Use of mark_safe() may expose cross-site scripting vulnerabilities"
         " and should be reviewed.",
     ),
-    "S309": QCoreApplication.translate(
-        "Security",
-        "Use of HTTPSConnection on older versions of Python prior to 2.7.9"
-        " and 3.4.3 do not provide security, see"
-        " https://wiki.openstack.org/wiki/OSSN/OSSN-0033",
-    ),
     "S310": QCoreApplication.translate(
         "Security",
         "Audit url open for permitted schemes. Allowing use of file:/ or"
@@ -195,11 +189,6 @@
         " reverts to the previous behavior that does not validate"
         " certificates or perform hostname checks.",
     ),
-    "S324": QCoreApplication.translate(
-        "Security",
-        "Use of os.tempnam() and os.tmpnam() is vulnerable to symlink"
-        " attacks. Consider using tmpfile() instead.",
-    ),
     # hashlib.new
     "S331": QCoreApplication.translate(
         "Security", "Use of insecure {0} hash function."
@@ -395,6 +384,11 @@
     "S611": QCoreApplication.translate(
         "Security", "Use of 'RawSQL()' opens a potential SQL attack vector."
     ),
+    # insecure logging.config.listen()
+    "S612": QCoreApplication.translate(
+        "Security",
+        "Use of insecure logging.config.listen() detected.",
+    ),
     # Jinja2 templates
     "S701.1": QCoreApplication.translate(
         "Security",