Bandit
| Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
|---|---|---|---|---|---|---|---|---|---|---|
| Cutter | 13,422 | 8 days ago | 464 | gpl-3.0 | C++ | |||||
| Free and Open Source Reverse Engineering Platform powered by rizin | ||||||||||
| Bandit | 5,203 | 3 days ago | 9 | March 05, 2022 | 196 | apache-2.0 | Python | |||
| Bandit is a tool designed to find common security issues in Python code. | ||||||||||
| Dependencycheck | 5,080 | 31 | 8 | 14 hours ago | 106 | September 14, 2022 | 412 | apache-2.0 | Java | |
| OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies. | ||||||||||
| Airgeddon | 5,049 | 3 days ago | gpl-3.0 | Shell | ||||||
| This is a multi-use bash script for Linux systems to audit wireless networks. | ||||||||||
| Faraday | 3,941 |  | 1 | 1 | 5 days ago | 23 | January 10, 2022 | 37 | gpl-3.0 | Python |
| Open Source Vulnerability Management Platform | ||||||||||
| Retire.js | 3,276 |  | 2,122 | 148 | 2 days ago | 102 | September 14, 2022 | 1 | other | JavaScript |
| scanner detecting the use of JavaScript libraries with known vulnerabilities. Can also generate an SBOM of the libraries it finds. | ||||||||||
| Mistune | 2,239 |  | 8,879 | 367 | a month ago | 35 | July 14, 2022 | 18 | bsd-3-clause | Python |
| A fast yet powerful Python Markdown parser with renderers and plugins. | ||||||||||
| Jetpack | 1,484 | 17 hours ago | 18 | July 12, 2022 | 2,572 | other | PHP | |||
| Security, performance, marketing, and design tools — Jetpack is made by WordPress experts to make WP sites safer and faster, and help you grow your traffic. | ||||||||||
| Sudo_pair | 1,169 |  | 1 | 1 | 6 months ago | 5 | March 27, 2020 | 16 | apache-2.0 | Rust |
| Plugin for sudo that requires another human to approve and monitor privileged sudo sessions | ||||||||||
| Elasticsearch Readonlyrest Plugin | 944 | 9 days ago | 34 | June 25, 2022 | 8 | gpl-3.0 | Scala | |||
| Free Elasticsearch security plugin and Kibana security plugin: super-easy Kibana multi-tenancy, Encryption, Authentication, Authorization, Auditing | ||||||||||
A security linter from PyCQA
- Free software: Apache license
- Documentation: https://bandit.readthedocs.io/en/latest/
- Source: PyCQA/bandit
- Bugs: https://github.com/PyCQA/bandit/issues
- Contributing: https://github.com/PyCQA/bandit/blob/main/CONTRIBUTING.md
Overview
Bandit is a tool designed to find common security issues in Python code. To do this Bandit processes each file, builds an AST from it, and runs appropriate plugins against the AST nodes. Once Bandit has finished scanning all the files it generates a report.
Bandit was originally developed within the OpenStack Security Project and later rehomed to PyCQA.
Show Your Style
Use our badge in your project's README!
using Markdown:
[](https://github.com/PyCQA/bandit)
using RST:
.. image:: https://img.shields.io/badge/security-bandit-yellow.svg
:target: https://github.com/PyCQA/bandit
:alt: Security Status
References
Python AST module documentation: https://docs.python.org/3/library/ast.html
Green Tree Snakes - the missing Python AST docs: https://greentreesnakes.readthedocs.org/en/latest/
Documentation of the various types of AST nodes that Bandit currently covers or could be extended to cover: https://greentreesnakes.readthedocs.org/en/latest/nodes.html
