%global _empty_manifest_terminate_build 0 Name: python-pybuilder-bandit Version: 0.3.1 Release: 1 Summary: Pybuilder plugin for bandit security linter License: Apache License, Version 2.0 URL: https://github.com/soda480/pybuilder-bandit Source0: https://mirrors.nju.edu.cn/pypi/web/packages/8c/ab/c058b563829481eea9f5e53afca8e440cce1e89556bda6bdf67e224192ca/pybuilder-bandit-0.3.1.tar.gz BuildArch: noarch Requires: python3-bandit %description # pybuilder-bandit [![GitHub Workflow Status](https://github.com/soda480/pybuilder-bandit/workflows/build/badge.svg)](https://github.com/soda480/pybuilder-bandit/actions) [![Code Coverage](https://codecov.io/gh/soda480/pybuilder-bandit/branch/main/graph/badge.svg)](https://codecov.io/gh/soda480/pybuilder-bandit) [![Code Grade](https://api.codiga.io/project/19893/status/svg)](https://app.codiga.io/public/project/19893/pybuilder-bandit/dashboard) [![PyPI version](https://badge.fury.io/py/pybuilder-bandit.svg)](https://badge.fury.io/py/pybuilder-bandit) [![python](https://img.shields.io/badge/python-3.7%20%7C%203.8%20%7C%203.9%20%7C%203.10-teal)](https://www.python.org/downloads/) A pybuilder plugin that analyzes your project for common security issues using `bandit`. Bandit is a security linter for Python code, for more information refer to the [bandit pypi page](https://pypi.org/project/bandit/). To add this plugin into your pybuilder project, add the following line near the top of your build.py: ```python use_plugin('pypi:pybuilder_bandit') ``` **NOTE** if you are using Pybuilder version `v0.11.x`, then specify the following version of the plugin: ```python use_plugin('pypi:pybuilder_bandit', '~=0.1.3') ``` ### Pybuilder bandit properties The pybuilder task `pyb bandit` will use bandit to scan your project to find common security issues, verbose mode will display to the screen any issues found. The following plugin properties are available to further configure the scan. Name | Type | Default Value | Description -- | -- | -- | -- bandit_break_build | bool | False | Fail build if scan detects any issues bandit_confidence_level | str | LOW | Report only issues of a given confidence level or higher: LOW, MEDIUM, HIGH bandit_severity_level | str | LOW | report only issues of a given severity level or higher: LOW, MEDIUM, HIGH bandit_skip_ids | str | None | comma-separated list of test IDs to skip bandit_include_testsources | bool | False | include scanning of project test sources bandit_include_scripts | bool | False | include scanning of project scripts The plugin properties are set using `project.set_property`, the following is an example of how to set the properties: ```Python project.set_property('bandit_break_build', True) project.set_property('bandit_confidence_level', 'LOW') project.set_property('bandit_severity_level', 'MEDIUM') project.set_property('bandit_skip_ids', 'B110,B315') project.set_property('bandit_include_testsources', True) project.set_property('bandit_include_scripts', True) ``` ### Development Clone the repository and ensure the latest version of Docker is installed on your development server. Build the Docker image: ```sh docker image build \ -t \ pybbandit:latest . ``` Run the Docker container: ```sh docker container run \ --rm \ -it \ -v $PWD:/code \ pybbandit:latest \ bash ``` Execute the build: ```sh pyb -X ``` %package -n python3-pybuilder-bandit Summary: Pybuilder plugin for bandit security linter Provides: python-pybuilder-bandit BuildRequires: python3-devel BuildRequires: python3-setuptools BuildRequires: python3-pip %description -n python3-pybuilder-bandit # pybuilder-bandit [![GitHub Workflow Status](https://github.com/soda480/pybuilder-bandit/workflows/build/badge.svg)](https://github.com/soda480/pybuilder-bandit/actions) [![Code Coverage](https://codecov.io/gh/soda480/pybuilder-bandit/branch/main/graph/badge.svg)](https://codecov.io/gh/soda480/pybuilder-bandit) [![Code Grade](https://api.codiga.io/project/19893/status/svg)](https://app.codiga.io/public/project/19893/pybuilder-bandit/dashboard) [![PyPI version](https://badge.fury.io/py/pybuilder-bandit.svg)](https://badge.fury.io/py/pybuilder-bandit) [![python](https://img.shields.io/badge/python-3.7%20%7C%203.8%20%7C%203.9%20%7C%203.10-teal)](https://www.python.org/downloads/) A pybuilder plugin that analyzes your project for common security issues using `bandit`. Bandit is a security linter for Python code, for more information refer to the [bandit pypi page](https://pypi.org/project/bandit/). To add this plugin into your pybuilder project, add the following line near the top of your build.py: ```python use_plugin('pypi:pybuilder_bandit') ``` **NOTE** if you are using Pybuilder version `v0.11.x`, then specify the following version of the plugin: ```python use_plugin('pypi:pybuilder_bandit', '~=0.1.3') ``` ### Pybuilder bandit properties The pybuilder task `pyb bandit` will use bandit to scan your project to find common security issues, verbose mode will display to the screen any issues found. The following plugin properties are available to further configure the scan. Name | Type | Default Value | Description -- | -- | -- | -- bandit_break_build | bool | False | Fail build if scan detects any issues bandit_confidence_level | str | LOW | Report only issues of a given confidence level or higher: LOW, MEDIUM, HIGH bandit_severity_level | str | LOW | report only issues of a given severity level or higher: LOW, MEDIUM, HIGH bandit_skip_ids | str | None | comma-separated list of test IDs to skip bandit_include_testsources | bool | False | include scanning of project test sources bandit_include_scripts | bool | False | include scanning of project scripts The plugin properties are set using `project.set_property`, the following is an example of how to set the properties: ```Python project.set_property('bandit_break_build', True) project.set_property('bandit_confidence_level', 'LOW') project.set_property('bandit_severity_level', 'MEDIUM') project.set_property('bandit_skip_ids', 'B110,B315') project.set_property('bandit_include_testsources', True) project.set_property('bandit_include_scripts', True) ``` ### Development Clone the repository and ensure the latest version of Docker is installed on your development server. Build the Docker image: ```sh docker image build \ -t \ pybbandit:latest . ``` Run the Docker container: ```sh docker container run \ --rm \ -it \ -v $PWD:/code \ pybbandit:latest \ bash ``` Execute the build: ```sh pyb -X ``` %package help Summary: Development documents and examples for pybuilder-bandit Provides: python3-pybuilder-bandit-doc %description help # pybuilder-bandit [![GitHub Workflow Status](https://github.com/soda480/pybuilder-bandit/workflows/build/badge.svg)](https://github.com/soda480/pybuilder-bandit/actions) [![Code Coverage](https://codecov.io/gh/soda480/pybuilder-bandit/branch/main/graph/badge.svg)](https://codecov.io/gh/soda480/pybuilder-bandit) [![Code Grade](https://api.codiga.io/project/19893/status/svg)](https://app.codiga.io/public/project/19893/pybuilder-bandit/dashboard) [![PyPI version](https://badge.fury.io/py/pybuilder-bandit.svg)](https://badge.fury.io/py/pybuilder-bandit) [![python](https://img.shields.io/badge/python-3.7%20%7C%203.8%20%7C%203.9%20%7C%203.10-teal)](https://www.python.org/downloads/) A pybuilder plugin that analyzes your project for common security issues using `bandit`. Bandit is a security linter for Python code, for more information refer to the [bandit pypi page](https://pypi.org/project/bandit/). To add this plugin into your pybuilder project, add the following line near the top of your build.py: ```python use_plugin('pypi:pybuilder_bandit') ``` **NOTE** if you are using Pybuilder version `v0.11.x`, then specify the following version of the plugin: ```python use_plugin('pypi:pybuilder_bandit', '~=0.1.3') ``` ### Pybuilder bandit properties The pybuilder task `pyb bandit` will use bandit to scan your project to find common security issues, verbose mode will display to the screen any issues found. The following plugin properties are available to further configure the scan. Name | Type | Default Value | Description -- | -- | -- | -- bandit_break_build | bool | False | Fail build if scan detects any issues bandit_confidence_level | str | LOW | Report only issues of a given confidence level or higher: LOW, MEDIUM, HIGH bandit_severity_level | str | LOW | report only issues of a given severity level or higher: LOW, MEDIUM, HIGH bandit_skip_ids | str | None | comma-separated list of test IDs to skip bandit_include_testsources | bool | False | include scanning of project test sources bandit_include_scripts | bool | False | include scanning of project scripts The plugin properties are set using `project.set_property`, the following is an example of how to set the properties: ```Python project.set_property('bandit_break_build', True) project.set_property('bandit_confidence_level', 'LOW') project.set_property('bandit_severity_level', 'MEDIUM') project.set_property('bandit_skip_ids', 'B110,B315') project.set_property('bandit_include_testsources', True) project.set_property('bandit_include_scripts', True) ``` ### Development Clone the repository and ensure the latest version of Docker is installed on your development server. Build the Docker image: ```sh docker image build \ -t \ pybbandit:latest . ``` Run the Docker container: ```sh docker container run \ --rm \ -it \ -v $PWD:/code \ pybbandit:latest \ bash ``` Execute the build: ```sh pyb -X ``` %prep %autosetup -n pybuilder-bandit-0.3.1 %build %py3_build %install %py3_install install -d -m755 %{buildroot}/%{_pkgdocdir} if [ -d doc ]; then cp -arf doc %{buildroot}/%{_pkgdocdir}; fi if [ -d docs ]; then cp -arf docs %{buildroot}/%{_pkgdocdir}; fi if [ -d example ]; then cp -arf example %{buildroot}/%{_pkgdocdir}; fi if [ -d examples ]; then cp -arf examples %{buildroot}/%{_pkgdocdir}; fi pushd %{buildroot} if [ -d usr/lib ]; then find usr/lib -type f -printf "/%h/%f\n" >> filelist.lst fi if [ -d usr/lib64 ]; then find usr/lib64 -type f -printf "/%h/%f\n" >> filelist.lst fi if [ -d usr/bin ]; then find usr/bin -type f -printf "/%h/%f\n" >> filelist.lst fi if [ -d usr/sbin ]; then find usr/sbin -type f -printf "/%h/%f\n" >> filelist.lst fi touch doclist.lst if [ -d usr/share/man ]; then find usr/share/man -type f -printf "/%h/%f.gz\n" >> doclist.lst fi popd mv %{buildroot}/filelist.lst . mv %{buildroot}/doclist.lst . %files -n python3-pybuilder-bandit -f filelist.lst %dir %{python3_sitelib}/* %files help -f doclist.lst %{_docdir}/* %changelog * Wed May 10 2023 Python_Bot - 0.3.1-1 - Package Spec generated