Mercurial Repositories > eric / file revision
eric6/Plugins/CheckerPlugins/CodeStyleChecker/Security/Checks/exec.py@646742c260bd
eric6/Plugins/CheckerPlugins/CodeStyleChecker/Security/Checks/exec.py
Tue, 09 Jun 2020 20:10:59 +0200
- author
- Detlev Offenbach <detlev@die-offenbachs.de>
- date
- Tue, 09 Jun 2020 20:10:59 +0200
- changeset 7614
- 646742c260bd
- child 7637
- c878e8255972
- permissions
- -rw-r--r--
Code Style Checker: continued to implement checker for security related issues.
# -*- coding: utf-8 -*- # Copyright (c) 2020 Detlev Offenbach <detlev@die-offenbachs.de> # """ Module implementing a check for the use of 'exec'. """ # # This is a modified version of the one found in the bandit package. # # Original Copyright 2014 Hewlett-Packard Development Company, L.P. # # SPDX-License-Identifier: Apache-2.0 # import sys def getChecks(): """ Public method to get a dictionary with checks handled by this module. @return dictionary containing checker lists containing checker function and list of codes @rtype dict """ if sys.version_info[0] == 2: return { "Exec": [ (checkExecUsed, ("S102",)), ], } else: return { "Call": [ (checkExecUsed, ("S102",)), ], } def checkExecUsed(reportError, context, config): """ Function to check for the use of 'exec'. @param reportError function to be used to report errors @type func @param context security context object @type SecurityContext @param config dictionary with configuration data @type dict """ if ( sys.version_info[0] == 2 or context.callFunctionNameQual == 'exec' ): reportError( context.node.lineno - 1, context.node.col_offset, "S102", "M", "H" )
