False positive: random.SystemRandom()
Bug #1422897 reported by
Gabriel Hurley
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
Bandit |
Fix Released
|
Low
|
Tim Kelsey |
Bug Description
Using random.
Simply importing random probably shouldn't be flagged at all (a linter will catch it if it's unused), and the test should check what functions and/or classes are being used from the random module.
Changed in bandit: | |
assignee: | nobody → Tim Kelsey (tim-kelsey) |
status: | Confirmed → In Progress |
Changed in bandit: | |
status: | In Progress → Fix Committed |
To post a comment you must log in.
Yeah, this test is very noisy. I think in the short term a viable solution is to use profiles which don't include this test.