-
Notifications
You must be signed in to change notification settings - Fork 308
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Apply ruff format #3925
base: master
Are you sure you want to change the base?
Apply ruff format #3925
Conversation
@@ -154,8 +171,7 @@ | |||
sqlfile = None | |||
enckey_contained = False | |||
|
|||
p = subprocess.run(["tar", "-ztf", backup_file], capture_output=True, | |||
text=True) | |||
p = subprocess.run(["tar", "-ztf", backup_file], capture_output=True, text=True) |
Check notice
Code scanning / Bandit
Starting a process with a partial executable path Note
@@ -154,8 +171,7 @@ | |||
sqlfile = None | |||
enckey_contained = False | |||
|
|||
p = subprocess.run(["tar", "-ztf", backup_file], capture_output=True, | |||
text=True) | |||
p = subprocess.run(["tar", "-ztf", backup_file], capture_output=True, text=True) |
Check notice
Code scanning / Bandit
subprocess call - check for execution of untrusted input. Note
pi_cfg = instance / "pi.cfg" | ||
with open(pi_cfg, "w") as f: | ||
f.write( | ||
PI_CFG_TEMPLATE.format(secret_key=secret_key_hex, pi_pepper=pi_pepper) |
Check failure
Code scanning / CodeQL
Clear-text storage of sensitive information High
sensitive data (secret)
This expression stores
sensitive data (secret)
"A CA connector with the name {0!s} could not be found!".format( | ||
connector_name | ||
) |
Check failure
Code scanning / CodeQL
Clear-text logging of sensitive information High
sensitive data (certificate)
"Should we not verify the attestation certificate? " | ||
"Policies: {0!s}".format(do_not_verify_the_cert) |
Check failure
Code scanning / CodeQL
Clear-text logging of sensitive information High
No description provided.