2021-03-09 06:57:46 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Tue Mar 9 06:13:09 UTC 2021 - Steve Kowalik <steven.kowalik@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to 1.7.0:
|
|
|
|
|
* Remove blacklist call to input() (#662) @ericwb
|
|
|
|
|
* Remove universal support on the wheel (#655) @ericwb
|
|
|
|
|
* Give some tips on how to resolve B101 in the doc (#616) @xuhdev
|
|
|
|
|
* Don't show progress information on --quiet (#641) @fniessink
|
|
|
|
|
* Add skip configuration to assert_used (#633) @wilbertom
|
|
|
|
|
* Drop Python2 build, test, and install (#615) @ericwb
|
|
|
|
|
* [FIX] blacklist: fix typo in import_ftplib (#601) @Yenthe666
|
|
|
|
|
* Resolve 'NoneType' object has no attribute 'id'Traceback in
|
|
|
|
|
django_mark_safe (#598) @ehooo
|
|
|
|
|
* Fix typo for activating venv (#590) @bavedarnow
|
|
|
|
|
* Bump pyyaml (#588) @dosisod
|
|
|
|
|
* Fix colorama not being disabled after being used (#586) @adambenali
|
|
|
|
|
* Cleanup some typos in recent contributor guide (#585) @ericwb
|
|
|
|
|
* [DOC] Support python3 venv creation (#583) @look4regev
|
|
|
|
|
* Add sha1 to the list of insecure hashes (#561) @ericwb
|
|
|
|
|
* Fix docs for B610,B611,B703 (#555) @amacfie
|
|
|
|
|
* Add a section explaining "nosec" (#554) @exhuma
|
|
|
|
|
* Add official support of Python 3.8 (#547) @ericwb
|
|
|
|
|
* Ignore common directories by default (#544) @ericwb
|
|
|
|
|
* Add shelve to the pickle blacklists (#542) @auscompgeek
|
|
|
|
|
* Remove obsolete "sudo" keyword. (#538) @jugmac00
|
|
|
|
|
* Update test requirements to latest versions (#535) @ericwb
|
|
|
|
|
* Fix readme file on Extending Bandit on list things (#534) @Aurel10
|
|
|
|
|
* fix the documentation file README.rst (#533) @Aurel10
|
|
|
|
|
* Cleanup comments after #510 (#532) @florczakraf
|
|
|
|
|
* Use SPDX license identifier instead of bulky headers (#530) @ericwb
|
|
|
|
|
* fix B603 docstring (#524) @graingert
|
|
|
|
|
* Add type checking to name node of hashlib_new (#516) @teeann
|
|
|
|
|
* --exit-zero option (#510) @maciejstromich
|
|
|
|
|
* Fix 3.8 errors (#509) @tylerwince
|
|
|
|
|
* Add several ini options for .bandit file (#508) @vuolter
|
|
|
|
|
* get_url returns different urls calling twice (bug #506) (#507) @ehooo
|
|
|
|
|
* Replace setattr (#493) @tylerwince
|
|
|
|
|
- Refresh remove-non-test-deps.patch
|
|
|
|
|
|
2021-02-13 10:21:24 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Sat Feb 13 10:21:09 UTC 2021 - Dirk Müller <dmueller@suse.com>
|
|
|
|
|
|
|
|
|
|
- cli tool, don't build with multiple python versions
|
|
|
|
|
|
2020-06-04 16:16:08 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Jun 4 16:15:56 UTC 2020 - Dirk Mueller <dmueller@suse.com>
|
|
|
|
|
|
|
|
|
|
- drop oslosphinx dependency
|
|
|
|
|
|
2019-11-14 15:05:25 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 14 15:05:01 UTC 2019 - Tomáš Chvátal <tchvatal@suse.com>
|
|
|
|
|
|
|
|
|
|
- Skip out python2 build as the dependencies are unresolvable
|
|
|
|
|
|
2019-07-24 10:22:45 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Wed Jul 24 10:13:14 UTC 2019 - pgajdos@suse.com
|
|
|
|
|
|
|
|
|
|
- version update to 1.6.2
|
|
|
|
|
* add test for regression and fix directory exclusion without wildcards (#489)
|
|
|
|
|
* add namespaces for parent attributes (#492)
|
|
|
|
|
* Performance fix (#502)
|
|
|
|
|
|
2019-05-16 18:10:55 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu May 16 17:29:13 UTC 2019 - Bryan Stephenson <bstephenson@suse.com>
|
|
|
|
|
|
|
|
|
|
- Update to version 1.6.0
|
|
|
|
|
* Add namespaces for parent attributes
|
|
|
|
|
|
2019-03-08 06:46:29 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Fri Mar 8 02:46:11 UTC 2019 - John Vandenberg <jayvdb@gmail.com>
|
|
|
|
|
|
|
|
|
|
- Add missing dependency on stestr >= 1.0.0
|
|
|
|
|
|
2019-03-04 09:09:00 +00:00
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Mon Feb 11 08:10:09 UTC 2019 - John Vandenberg <jayvdb@gmail.com>
|
|
|
|
|
|
|
|
|
|
- Add remove-non-test-deps.patch to remove build dependencies not needed
|
|
|
|
|
to build, including hacking which requires an unavailable version of flake8
|
|
|
|
|
- Activate tests
|
|
|
|
|
- Use %license
|
|
|
|
|
- Remove unnecessary devel build dependency
|
|
|
|
|
- Update to v1.5.1
|
|
|
|
|
* Fixed crash on dynamic import traversal
|
|
|
|
|
* New plugin to check for ignoring host keys
|
|
|
|
|
* Adding test case for traversal crash
|
|
|
|
|
- from 1.5.0
|
|
|
|
|
* Add Python 3.7 support
|
|
|
|
|
* Add experimental Python 3.8-dev to test with
|
|
|
|
|
* Remove the unused integration tests (#285) @ericwb
|
|
|
|
|
* Show support for Python 3.6 (#288) @ericwb
|
|
|
|
|
* Remove integration test playbooks (#290) @ericwb
|
|
|
|
|
* Django sql injection (#292) @ehooo
|
|
|
|
|
* Add detection for Django XSS (#295) @ehooo
|
|
|
|
|
* Fast fix for yaml import (#303) @ehooo
|
|
|
|
|
* Add missing B413 import_pycrypto in README (#308) @ericwb
|
|
|
|
|
* Add PyCryptodome to import blacklists (#307) @warthog9
|
|
|
|
|
* Django sql injection (#292) @ehooo
|
|
|
|
|
* Add detection for Django XSS (#295) @ehooo
|
|
|
|
|
* Add missing documentation link for B703 (#314) @ericwb
|
|
|
|
|
* Improve shell (#298) @ehooo
|
|
|
|
|
* Remove openstack specific utils.exec checks (#328) @ericwb
|
|
|
|
|
* add os.tempnam() / os.tmpnam() to blacklist (#330) @chair6
|
|
|
|
|
* Add subprocess.run to B602 (#334) @ericwb
|
|
|
|
|
* Repair some broken see also links in the doc (#336) @ericwb
|
|
|
|
|
* Use html.escape() instead of cgi.escape() (#339) @ericwb
|
|
|
|
|
* Re-enable functional tests as part of CI (#348) @ericwb
|
|
|
|
|
* Add more_info URL to XML output (#354) @stannum-l
|
|
|
|
|
* Report dill usage (#347) @calve
|
|
|
|
|
* Add emojis to issue types (#358) @ericwb
|
|
|
|
|
* Add more_info URL to text output (#359) @stannum-l
|
|
|
|
|
* Add more_info URL to screen formatter (#360) @stannum-l
|
|
|
|
|
* Add support to run bandit as python -m bandit (#363) @rtfpessoa
|
|
|
|
|
* Add more_info URL to csv formatter (#361) @stannum-l
|
|
|
|
|
* Add external documentation references (#368) @evqna
|
|
|
|
|
* Change ver 1.4.1 references to 1.5.0 (#370) @ericwb
|
|
|
|
|
|
|
|
|
|
-------------------------------------------------------------------
|
|
|
|
|
Thu Nov 16 17:44:23 UTC 2017 - toddrme2178@gmail.com
|
|
|
|
|
|
|
|
|
|
- Initial version for v1.4.0
|
