From 95659b6f6c23bb26c25ce96ff0195b23c0f0db31 Mon Sep 17 00:00:00 2001 From: Lee Miller <lee.miller@tutanota.com> Date: Wed, 6 Mar 2024 12:56:03 +0200 Subject: [PATCH] Fix bandit comments: - suppress B301 in the single place where it appears, - fix placement of B607, B603 in proofofwork and B324 in bitmessagekivy. --- src/bitmessagekivy/identiconGeneration.py | 3 ++- src/network/knownnodes.py | 2 +- src/proofofwork.py | 4 ++-- 3 files changed, 5 insertions(+), 4 deletions(-) diff --git a/src/bitmessagekivy/identiconGeneration.py b/src/bitmessagekivy/identiconGeneration.py index 17e211dd..2e2f2e93 100644 --- a/src/bitmessagekivy/identiconGeneration.py +++ b/src/bitmessagekivy/identiconGeneration.py @@ -40,7 +40,8 @@ def generate_hash(string): try: # make input case insensitive string = str.lower(string) - hash_object = hashlib.md5(str.encode(string)) # nosec B324, B303 + hash_object = hashlib.md5( # nosec B324, B303 + str.encode(string)) print(hash_object.hexdigest()) # returned object is a hex string return hash_object.hexdigest() diff --git a/src/network/knownnodes.py b/src/network/knownnodes.py index d3b6dd01..b74c9a15 100644 --- a/src/network/knownnodes.py +++ b/src/network/knownnodes.py @@ -85,7 +85,7 @@ def pickle_deserialize_old_knownnodes(source): the new format is {Peer:{"lastseen":i, "rating":f}} """ global knownNodes - knownNodes = pickle.load(source) + knownNodes = pickle.load(source) # nosec B301 for stream in knownNodes.keys(): for node, params in knownNodes[stream].iteritems(): if isinstance(params, (float, int)): diff --git a/src/proofofwork.py b/src/proofofwork.py index 5b3e3fb6..f77f455a 100644 --- a/src/proofofwork.py +++ b/src/proofofwork.py @@ -276,8 +276,8 @@ def buildCPoW(): '-f', 'Makefile.bsd']) # nosec B607, B603 else: # GNU make - call(["make", "-C", os.path.join(paths.codePath(), - "bitmsghash")]) # nosec B607, B603 + call([ # nosec B607, B603 + "make", "-C", os.path.join(paths.codePath(), "bitmsghash")]) if os.path.exists(os.path.join(paths.codePath(), "bitmsghash", "bitmsghash.so")): init() notifyBuild(True)