Branch: refs/heads/master
Home:
https://github.com/tribe29/checkmk
Commit: 479a5d0e6801cf96b1c267512777277aafb90f76
https://github.com/tribe29/checkmk/commit/479a5d0e6801cf96b1c267512777277aa…
Author: Max Linke <max.linke(a)tribe29.com>
Date: 2022-03-07 (Mon, 07 Mar 2022)
Changed paths:
M Pipfile.lock
M bandit.yaml
M bin/mkbackup
M cmk/gui/plugins/webapi/utils.py
M cmk/gui/valuespec.py
M cmk/gui/watolib/config_sync.py
Log Message:
-----------
Update Pipfile.lock
This updated bandit to 1.7.4. In 1.7.3 check [B303], hash functions,
was updated and [B415], IMPI protocol, was added.
Hash Function
=============
A lower threshold for insecure hash functions was introduced.
All offending code places have been updated with
`usedforsecurity=False` to make bandit happy. This might have
not been ideal in all cases. I'm currently not sure how a change
in hashing algorithm would affect back wards compatibility.
IMPI Protocol
==============
The IMPI protocol is considered insecure. We use it exentsivly in core
parts of the code. For now ignore this check.
[B303]
https://github.com/PyCQA/bandit/issues/748
[B415]
https://github.com/PyCQA/bandit/pull/803
Change-Id: Iee36820d152955bbd31e6b21fdd6bbc5b83dbb1c