Diff of the two buildlogs: -- --- b1/build.log 2024-10-19 16:38:57.612038864 +0000 +++ b2/build.log 2024-10-19 16:56:33.294560774 +0000 @@ -1,6 +1,6 @@ I: pbuilder: network access will be disabled during build -I: Current time: Sat Oct 19 04:36:25 -12 2024 -I: pbuilder-time-stamp: 1729355785 +I: Current time: Sun Oct 20 06:39:10 +14 2024 +I: pbuilder-time-stamp: 1729355950 I: Building the build Environment I: extracting base tarball [/var/cache/pbuilder/unstable-reproducible-base.tgz] I: copying local configuration @@ -25,52 +25,84 @@ dpkg-source: info: unpacking bandit_1.7.10-1.debian.tar.xz I: using fakeroot in build. I: Installing the build-deps -I: user script /srv/workspace/pbuilder/27558/tmp/hooks/D02_print_environment starting +I: user script /srv/workspace/pbuilder/10557/tmp/hooks/D01_modify_environment starting +debug: Running on ff64a. +I: Changing host+domainname to test build reproducibility +I: Adding a custom variable just for the fun of it... +I: Changing /bin/sh to bash +'/bin/sh' -> '/bin/bash' +lrwxrwxrwx 1 root root 9 Oct 19 16:40 /bin/sh -> /bin/bash +I: Setting pbuilder2's login shell to /bin/bash +I: Setting pbuilder2's GECOS to second user,second room,second work-phone,second home-phone,second other +I: user script /srv/workspace/pbuilder/10557/tmp/hooks/D01_modify_environment finished +I: user script /srv/workspace/pbuilder/10557/tmp/hooks/D02_print_environment starting I: set - BUILDDIR='/build/reproducible-path' - BUILDUSERGECOS='first user,first room,first work-phone,first home-phone,first other' - BUILDUSERNAME='pbuilder1' - BUILD_ARCH='armhf' - DEBIAN_FRONTEND='noninteractive' - DEB_BUILD_OPTIONS='buildinfo=+all reproducible=+all parallel=3 ' - DISTRIBUTION='unstable' - HOME='/root' - HOST_ARCH='armhf' + BASH=/bin/sh + BASHOPTS=checkwinsize:cmdhist:complete_fullquote:extquote:force_fignore:globasciiranges:globskipdots:hostcomplete:interactive_comments:patsub_replacement:progcomp:promptvars:sourcepath + BASH_ALIASES=() + BASH_ARGC=() + BASH_ARGV=() + BASH_CMDS=() + BASH_LINENO=([0]="12" [1]="0") + BASH_LOADABLES_PATH=/usr/local/lib/bash:/usr/lib/bash:/opt/local/lib/bash:/usr/pkg/lib/bash:/opt/pkg/lib/bash:. + BASH_SOURCE=([0]="/tmp/hooks/D02_print_environment" [1]="/tmp/hooks/D02_print_environment") + BASH_VERSINFO=([0]="5" [1]="2" [2]="32" [3]="1" [4]="release" [5]="arm-unknown-linux-gnueabihf") + BASH_VERSION='5.2.32(1)-release' + BUILDDIR=/build/reproducible-path + BUILDUSERGECOS='second user,second room,second work-phone,second home-phone,second other' + BUILDUSERNAME=pbuilder2 + BUILD_ARCH=armhf + DEBIAN_FRONTEND=noninteractive + DEB_BUILD_OPTIONS='buildinfo=+all reproducible=+all parallel=6 ' + DIRSTACK=() + DISTRIBUTION=unstable + EUID=0 + FUNCNAME=([0]="Echo" [1]="main") + GROUPS=() + HOME=/root + HOSTNAME=i-capture-the-hostname + HOSTTYPE=arm + HOST_ARCH=armhf IFS=' ' - INVOCATION_ID='0fb84a0eeb1345e19aa16b1c31b9945a' - LANG='C' - LANGUAGE='en_US:en' - LC_ALL='C' - MAIL='/var/mail/root' - OPTIND='1' - PATH='/usr/sbin:/usr/bin:/sbin:/bin:/usr/games' - PBCURRENTCOMMANDLINEOPERATION='build' - PBUILDER_OPERATION='build' - PBUILDER_PKGDATADIR='/usr/share/pbuilder' - PBUILDER_PKGLIBDIR='/usr/lib/pbuilder' - PBUILDER_SYSCONFDIR='/etc' - PPID='27558' - PS1='# ' - PS2='> ' + INVOCATION_ID=af119468137b4357ac362fd2fec51265 + LANG=C + LANGUAGE=it_CH:it + LC_ALL=C + MACHTYPE=arm-unknown-linux-gnueabihf + MAIL=/var/mail/root + OPTERR=1 + OPTIND=1 + OSTYPE=linux-gnueabihf + PATH=/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/i/capture/the/path + PBCURRENTCOMMANDLINEOPERATION=build + PBUILDER_OPERATION=build + PBUILDER_PKGDATADIR=/usr/share/pbuilder + PBUILDER_PKGLIBDIR=/usr/lib/pbuilder + PBUILDER_SYSCONFDIR=/etc + PIPESTATUS=([0]="0") + POSIXLY_CORRECT=y + PPID=10557 PS4='+ ' - PWD='/' - SHELL='/bin/bash' - SHLVL='2' - SUDO_COMMAND='/usr/bin/timeout -k 18.1h 18h /usr/bin/ionice -c 3 /usr/bin/nice /usr/sbin/pbuilder --build --configfile /srv/reproducible-results/rbuild-debian/r-b-build.BbNT94fs/pbuilderrc_kzUl --distribution unstable --hookdir /etc/pbuilder/first-build-hooks --debbuildopts -b --basetgz /var/cache/pbuilder/unstable-reproducible-base.tgz --buildresult /srv/reproducible-results/rbuild-debian/r-b-build.BbNT94fs/b1 --logfile b1/build.log bandit_1.7.10-1.dsc' - SUDO_GID='110' - SUDO_UID='103' - SUDO_USER='jenkins' - TERM='unknown' - TZ='/usr/share/zoneinfo/Etc/GMT+12' - USER='root' - _='/usr/bin/systemd-run' - http_proxy='http://10.0.0.15:3142/' + PWD=/ + SHELL=/bin/bash + SHELLOPTS=braceexpand:errexit:hashall:interactive-comments:posix + SHLVL=3 + SUDO_COMMAND='/usr/bin/timeout -k 24.1h 24h /usr/bin/ionice -c 3 /usr/bin/nice -n 11 /usr/bin/unshare --uts -- /usr/sbin/pbuilder --build --configfile /srv/reproducible-results/rbuild-debian/r-b-build.BbNT94fs/pbuilderrc_rEZ3 --distribution unstable --hookdir /etc/pbuilder/rebuild-hooks --debbuildopts -b --basetgz /var/cache/pbuilder/unstable-reproducible-base.tgz --buildresult /srv/reproducible-results/rbuild-debian/r-b-build.BbNT94fs/b2 --logfile b2/build.log bandit_1.7.10-1.dsc' + SUDO_GID=114 + SUDO_UID=109 + SUDO_USER=jenkins + TERM=unknown + TZ=/usr/share/zoneinfo/Etc/GMT-14 + UID=0 + USER=root + _='I: set' + http_proxy=http://10.0.0.15:3142/ I: uname -a - Linux virt32z 6.1.0-26-armmp-lpae #1 SMP Debian 6.1.112-1 (2024-09-30) armv7l GNU/Linux + Linux i-capture-the-hostname 6.1.0-26-arm64 #1 SMP Debian 6.1.112-1 (2024-09-30) aarch64 GNU/Linux I: ls -l /bin lrwxrwxrwx 1 root root 7 Aug 4 21:30 /bin -> usr/bin -I: user script /srv/workspace/pbuilder/27558/tmp/hooks/D02_print_environment finished +I: user script /srv/workspace/pbuilder/10557/tmp/hooks/D02_print_environment finished -> Attempting to satisfy build-dependencies -> Creating pbuilder-satisfydepends-dummy package Package: pbuilder-satisfydepends-dummy @@ -331,7 +363,7 @@ Get: 185 http://deb.debian.org/debian unstable/main armhf python3-rich all 13.7.1-1 [201 kB] Get: 186 http://deb.debian.org/debian unstable/main armhf python3-sarif-python-om all 1.0.4-3 [12.3 kB] Get: 187 http://deb.debian.org/debian unstable/main armhf python3-testscenarios all 0.5.0-4 [12.8 kB] -Fetched 51.6 MB in 1s (56.8 MB/s) +Fetched 51.6 MB in 5s (10.7 MB/s) debconf: delaying package configuration, since apt-utils is not installed Selecting previously unselected package libpython3.12-minimal:armhf. (Reading database ... (Reading database ... 5% (Reading database ... 10% (Reading database ... 15% (Reading database ... 20% (Reading database ... 25% (Reading database ... 30% (Reading database ... 35% (Reading database ... 40% (Reading database ... 45% (Reading database ... 50% (Reading database ... 55% (Reading database ... 60% (Reading database ... 65% (Reading database ... 70% (Reading database ... 75% (Reading database ... 80% (Reading database ... 85% (Reading database ... 90% (Reading database ... 95% (Reading database ... 100% (Reading database ... 19665 files and directories currently installed.) @@ -938,8 +970,8 @@ Setting up tzdata (2024b-3) ... Current default time zone: 'Etc/UTC' -Local time is now: Sat Oct 19 16:37:18 UTC 2024. -Universal Time is now: Sat Oct 19 16:37:18 UTC 2024. +Local time is now: Sat Oct 19 16:44:16 UTC 2024. +Universal Time is now: Sat Oct 19 16:44:16 UTC 2024. Run 'dpkg-reconfigure tzdata' if you wish to change it. Setting up liberror-perl (0.17029-2) ... @@ -1125,7 +1157,11 @@ fakeroot is already the newest version (1.36-1). 0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded. I: Building the package -I: Running cd /build/reproducible-path/bandit-1.7.10/ && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games" HOME="/nonexistent/first-build" dpkg-buildpackage -us -uc -b && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games" HOME="/nonexistent/first-build" dpkg-genchanges -S > ../bandit_1.7.10-1_source.changes +I: user script /srv/workspace/pbuilder/10557/tmp/hooks/A99_set_merged_usr starting +Not re-configuring usrmerge for unstable +I: user script /srv/workspace/pbuilder/10557/tmp/hooks/A99_set_merged_usr finished +hostname: Name or service not known +I: Running cd /build/reproducible-path/bandit-1.7.10/ && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/i/capture/the/path" HOME="/nonexistent/second-build" dpkg-buildpackage -us -uc -b && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/i/capture/the/path" HOME="/nonexistent/second-build" dpkg-genchanges -S > ../bandit_1.7.10-1_source.changes dpkg-buildpackage: info: source package bandit dpkg-buildpackage: info: source version 1.7.10-1 dpkg-buildpackage: info: source distribution unstable @@ -1233,75 +1269,75 @@ creating build/lib/bandit/blacklists copying bandit/blacklists/utils.py -> build/lib/bandit/blacklists copying bandit/blacklists/imports.py -> build/lib/bandit/blacklists -copying bandit/blacklists/calls.py -> build/lib/bandit/blacklists copying bandit/blacklists/__init__.py -> build/lib/bandit/blacklists -creating build/lib/bandit/core -copying bandit/core/docs_utils.py -> build/lib/bandit/core -copying bandit/core/metrics.py -> build/lib/bandit/core -copying bandit/core/utils.py -> build/lib/bandit/core -copying bandit/core/manager.py -> build/lib/bandit/core -copying bandit/core/meta_ast.py -> build/lib/bandit/core -copying bandit/core/test_set.py -> build/lib/bandit/core -copying bandit/core/tester.py -> build/lib/bandit/core -copying bandit/core/blacklisting.py -> build/lib/bandit/core -copying bandit/core/node_visitor.py -> build/lib/bandit/core -copying bandit/core/constants.py -> build/lib/bandit/core -copying bandit/core/config.py -> build/lib/bandit/core -copying bandit/core/context.py -> build/lib/bandit/core -copying bandit/core/issue.py -> build/lib/bandit/core -copying bandit/core/extension_loader.py -> build/lib/bandit/core -copying bandit/core/__init__.py -> build/lib/bandit/core -copying bandit/core/test_properties.py -> build/lib/bandit/core -creating build/lib/bandit/formatters -copying bandit/formatters/csv.py -> build/lib/bandit/formatters -copying bandit/formatters/utils.py -> build/lib/bandit/formatters -copying bandit/formatters/custom.py -> build/lib/bandit/formatters -copying bandit/formatters/xml.py -> build/lib/bandit/formatters -copying bandit/formatters/json.py -> build/lib/bandit/formatters -copying bandit/formatters/text.py -> build/lib/bandit/formatters -copying bandit/formatters/yaml.py -> build/lib/bandit/formatters -copying bandit/formatters/html.py -> build/lib/bandit/formatters -copying bandit/formatters/__init__.py -> build/lib/bandit/formatters -copying bandit/formatters/screen.py -> build/lib/bandit/formatters -copying bandit/formatters/sarif.py -> build/lib/bandit/formatters -copying bandit/__main__.py -> build/lib/bandit -copying bandit/__init__.py -> build/lib/bandit +copying bandit/blacklists/calls.py -> build/lib/bandit/blacklists creating build/lib/bandit/cli -copying bandit/cli/main.py -> build/lib/bandit/cli +copying bandit/cli/baseline.py -> build/lib/bandit/cli copying bandit/cli/config_generator.py -> build/lib/bandit/cli +copying bandit/cli/main.py -> build/lib/bandit/cli copying bandit/cli/__init__.py -> build/lib/bandit/cli -copying bandit/cli/baseline.py -> build/lib/bandit/cli creating build/lib/bandit/plugins -copying bandit/plugins/trojansource.py -> build/lib/bandit/plugins -copying bandit/plugins/logging_config_insecure_listen.py -> build/lib/bandit/plugins -copying bandit/plugins/injection_paramiko.py -> build/lib/bandit/plugins -copying bandit/plugins/jinja2_templates.py -> build/lib/bandit/plugins -copying bandit/plugins/general_bad_file_permissions.py -> build/lib/bandit/plugins -copying bandit/plugins/django_sql_injection.py -> build/lib/bandit/plugins -copying bandit/plugins/ssh_no_host_key_verification.py -> build/lib/bandit/plugins -copying bandit/plugins/general_hardcoded_tmp.py -> build/lib/bandit/plugins -copying bandit/plugins/try_except_continue.py -> build/lib/bandit/plugins -copying bandit/plugins/exec.py -> build/lib/bandit/plugins -copying bandit/plugins/django_xss.py -> build/lib/bandit/plugins -copying bandit/plugins/injection_wildcard.py -> build/lib/bandit/plugins copying bandit/plugins/weak_cryptographic_key.py -> build/lib/bandit/plugins +copying bandit/plugins/django_xss.py -> build/lib/bandit/plugins +copying bandit/plugins/general_hardcoded_tmp.py -> build/lib/bandit/plugins copying bandit/plugins/yaml_load.py -> build/lib/bandit/plugins -copying bandit/plugins/general_hardcoded_password.py -> build/lib/bandit/plugins copying bandit/plugins/general_bind_all_interfaces.py -> build/lib/bandit/plugins -copying bandit/plugins/insecure_ssl_tls.py -> build/lib/bandit/plugins -copying bandit/plugins/app_debug.py -> build/lib/bandit/plugins -copying bandit/plugins/injection_sql.py -> build/lib/bandit/plugins -copying bandit/plugins/crypto_request_no_cert_validation.py -> build/lib/bandit/plugins +copying bandit/plugins/snmp_security_check.py -> build/lib/bandit/plugins +copying bandit/plugins/ssh_no_host_key_verification.py -> build/lib/bandit/plugins +copying bandit/plugins/asserts.py -> build/lib/bandit/plugins +copying bandit/plugins/exec.py -> build/lib/bandit/plugins +copying bandit/plugins/trojansource.py -> build/lib/bandit/plugins +copying bandit/plugins/pytorch_load_save.py -> build/lib/bandit/plugins +copying bandit/plugins/tarfile_unsafe_members.py -> build/lib/bandit/plugins +copying bandit/plugins/general_bad_file_permissions.py -> build/lib/bandit/plugins +copying bandit/plugins/injection_paramiko.py -> build/lib/bandit/plugins copying bandit/plugins/request_without_timeout.py -> build/lib/bandit/plugins -copying bandit/plugins/injection_shell.py -> build/lib/bandit/plugins +copying bandit/plugins/try_except_continue.py -> build/lib/bandit/plugins copying bandit/plugins/try_except_pass.py -> build/lib/bandit/plugins copying bandit/plugins/__init__.py -> build/lib/bandit/plugins -copying bandit/plugins/asserts.py -> build/lib/bandit/plugins -copying bandit/plugins/snmp_security_check.py -> build/lib/bandit/plugins +copying bandit/plugins/app_debug.py -> build/lib/bandit/plugins +copying bandit/plugins/logging_config_insecure_listen.py -> build/lib/bandit/plugins +copying bandit/plugins/general_hardcoded_password.py -> build/lib/bandit/plugins +copying bandit/plugins/insecure_ssl_tls.py -> build/lib/bandit/plugins +copying bandit/plugins/injection_shell.py -> build/lib/bandit/plugins copying bandit/plugins/mako_templates.py -> build/lib/bandit/plugins +copying bandit/plugins/django_sql_injection.py -> build/lib/bandit/plugins copying bandit/plugins/hashlib_insecure_functions.py -> build/lib/bandit/plugins -copying bandit/plugins/tarfile_unsafe_members.py -> build/lib/bandit/plugins -copying bandit/plugins/pytorch_load_save.py -> build/lib/bandit/plugins +copying bandit/plugins/crypto_request_no_cert_validation.py -> build/lib/bandit/plugins +copying bandit/plugins/injection_wildcard.py -> build/lib/bandit/plugins +copying bandit/plugins/jinja2_templates.py -> build/lib/bandit/plugins +copying bandit/plugins/injection_sql.py -> build/lib/bandit/plugins +creating build/lib/bandit/formatters +copying bandit/formatters/utils.py -> build/lib/bandit/formatters +copying bandit/formatters/yaml.py -> build/lib/bandit/formatters +copying bandit/formatters/custom.py -> build/lib/bandit/formatters +copying bandit/formatters/csv.py -> build/lib/bandit/formatters +copying bandit/formatters/screen.py -> build/lib/bandit/formatters +copying bandit/formatters/sarif.py -> build/lib/bandit/formatters +copying bandit/formatters/html.py -> build/lib/bandit/formatters +copying bandit/formatters/__init__.py -> build/lib/bandit/formatters +copying bandit/formatters/xml.py -> build/lib/bandit/formatters +copying bandit/formatters/text.py -> build/lib/bandit/formatters +copying bandit/formatters/json.py -> build/lib/bandit/formatters +copying bandit/__init__.py -> build/lib/bandit +copying bandit/__main__.py -> build/lib/bandit +creating build/lib/bandit/core +copying bandit/core/test_set.py -> build/lib/bandit/core +copying bandit/core/utils.py -> build/lib/bandit/core +copying bandit/core/config.py -> build/lib/bandit/core +copying bandit/core/docs_utils.py -> build/lib/bandit/core +copying bandit/core/manager.py -> build/lib/bandit/core +copying bandit/core/test_properties.py -> build/lib/bandit/core +copying bandit/core/constants.py -> build/lib/bandit/core +copying bandit/core/blacklisting.py -> build/lib/bandit/core +copying bandit/core/meta_ast.py -> build/lib/bandit/core +copying bandit/core/extension_loader.py -> build/lib/bandit/core +copying bandit/core/node_visitor.py -> build/lib/bandit/core +copying bandit/core/__init__.py -> build/lib/bandit/core +copying bandit/core/issue.py -> build/lib/bandit/core +copying bandit/core/tester.py -> build/lib/bandit/core +copying bandit/core/metrics.py -> build/lib/bandit/core +copying bandit/core/context.py -> build/lib/bandit/core running egg_info creating bandit.egg-info writing bandit.egg-info/PKG-INFO @@ -1325,145 +1361,145 @@ creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3 creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit -copying build/lib/bandit/__main__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit -creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/docs_utils.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/metrics.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/utils.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/manager.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/meta_ast.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/test_set.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/tester.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/blacklisting.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/node_visitor.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/constants.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/config.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/context.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/issue.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/extension_loader.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core -copying build/lib/bandit/core/test_properties.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli -copying build/lib/bandit/cli/main.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli +copying build/lib/bandit/cli/baseline.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli copying build/lib/bandit/cli/config_generator.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli +copying build/lib/bandit/cli/main.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli copying build/lib/bandit/cli/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli -copying build/lib/bandit/cli/baseline.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli -creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists -copying build/lib/bandit/blacklists/utils.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists -copying build/lib/bandit/blacklists/imports.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists -copying build/lib/bandit/blacklists/calls.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists -copying build/lib/bandit/blacklists/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/trojansource.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/logging_config_insecure_listen.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/injection_paramiko.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/jinja2_templates.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/general_bad_file_permissions.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/django_sql_injection.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/ssh_no_host_key_verification.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/general_hardcoded_tmp.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/try_except_continue.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/exec.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/django_xss.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/injection_wildcard.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/weak_cryptographic_key.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/django_xss.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/general_hardcoded_tmp.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/yaml_load.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/general_hardcoded_password.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/general_bind_all_interfaces.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/insecure_ssl_tls.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/app_debug.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/injection_sql.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/crypto_request_no_cert_validation.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/snmp_security_check.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/ssh_no_host_key_verification.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/asserts.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/exec.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/trojansource.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/pytorch_load_save.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/tarfile_unsafe_members.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/general_bad_file_permissions.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/injection_paramiko.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/request_without_timeout.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/injection_shell.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/try_except_continue.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/try_except_pass.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/asserts.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/snmp_security_check.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/app_debug.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/logging_config_insecure_listen.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/general_hardcoded_password.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/insecure_ssl_tls.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/injection_shell.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/mako_templates.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/django_sql_injection.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/hashlib_insecure_functions.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/tarfile_unsafe_members.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins -copying build/lib/bandit/plugins/pytorch_load_save.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/crypto_request_no_cert_validation.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/injection_wildcard.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/jinja2_templates.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/plugins/injection_sql.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins +copying build/lib/bandit/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit +copying build/lib/bandit/__main__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit +creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/test_set.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/utils.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/config.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/docs_utils.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/manager.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/test_properties.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/constants.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/blacklisting.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/meta_ast.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/extension_loader.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/node_visitor.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/issue.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/tester.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/metrics.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core +copying build/lib/bandit/core/context.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/csv.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters copying build/lib/bandit/formatters/utils.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/custom.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/xml.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/json.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/text.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters copying build/lib/bandit/formatters/yaml.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/html.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/custom.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/csv.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters copying build/lib/bandit/formatters/screen.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters copying build/lib/bandit/formatters/sarif.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/__main__.py to __main__.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/docs_utils.py to docs_utils.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/metrics.py to metrics.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/utils.py to utils.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/manager.py to manager.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/meta_ast.py to meta_ast.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/test_set.py to test_set.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/tester.py to tester.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/blacklisting.py to blacklisting.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/node_visitor.py to node_visitor.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/constants.py to constants.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/config.py to config.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/context.py to context.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/issue.py to issue.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/extension_loader.py to extension_loader.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/__init__.py to __init__.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/test_properties.py to test_properties.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli/main.py to main.cpython-312.pyc +copying build/lib/bandit/formatters/html.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/xml.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/text.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/json.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters +creating /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists +copying build/lib/bandit/blacklists/utils.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists +copying build/lib/bandit/blacklists/imports.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists +copying build/lib/bandit/blacklists/__init__.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists +copying build/lib/bandit/blacklists/calls.py -> /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli/baseline.py to baseline.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli/config_generator.py to config_generator.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli/main.py to main.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli/__init__.py to __init__.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/cli/baseline.py to baseline.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists/utils.py to utils.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists/imports.py to imports.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists/calls.py to calls.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists/__init__.py to __init__.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/trojansource.py to trojansource.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/logging_config_insecure_listen.py to logging_config_insecure_listen.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/injection_paramiko.py to injection_paramiko.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/jinja2_templates.py to jinja2_templates.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/general_bad_file_permissions.py to general_bad_file_permissions.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/django_sql_injection.py to django_sql_injection.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/ssh_no_host_key_verification.py to ssh_no_host_key_verification.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/general_hardcoded_tmp.py to general_hardcoded_tmp.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/try_except_continue.py to try_except_continue.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/exec.py to exec.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/django_xss.py to django_xss.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/injection_wildcard.py to injection_wildcard.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/weak_cryptographic_key.py to weak_cryptographic_key.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/django_xss.py to django_xss.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/general_hardcoded_tmp.py to general_hardcoded_tmp.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/yaml_load.py to yaml_load.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/general_hardcoded_password.py to general_hardcoded_password.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/general_bind_all_interfaces.py to general_bind_all_interfaces.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/insecure_ssl_tls.py to insecure_ssl_tls.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/app_debug.py to app_debug.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/injection_sql.py to injection_sql.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/crypto_request_no_cert_validation.py to crypto_request_no_cert_validation.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/snmp_security_check.py to snmp_security_check.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/ssh_no_host_key_verification.py to ssh_no_host_key_verification.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/asserts.py to asserts.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/exec.py to exec.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/trojansource.py to trojansource.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/pytorch_load_save.py to pytorch_load_save.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/tarfile_unsafe_members.py to tarfile_unsafe_members.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/general_bad_file_permissions.py to general_bad_file_permissions.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/injection_paramiko.py to injection_paramiko.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/request_without_timeout.py to request_without_timeout.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/injection_shell.py to injection_shell.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/try_except_continue.py to try_except_continue.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/try_except_pass.py to try_except_pass.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/__init__.py to __init__.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/asserts.py to asserts.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/snmp_security_check.py to snmp_security_check.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/app_debug.py to app_debug.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/logging_config_insecure_listen.py to logging_config_insecure_listen.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/general_hardcoded_password.py to general_hardcoded_password.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/insecure_ssl_tls.py to insecure_ssl_tls.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/injection_shell.py to injection_shell.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/mako_templates.py to mako_templates.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/django_sql_injection.py to django_sql_injection.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/hashlib_insecure_functions.py to hashlib_insecure_functions.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/tarfile_unsafe_members.py to tarfile_unsafe_members.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/pytorch_load_save.py to pytorch_load_save.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/csv.py to csv.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/crypto_request_no_cert_validation.py to crypto_request_no_cert_validation.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/injection_wildcard.py to injection_wildcard.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/jinja2_templates.py to jinja2_templates.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/plugins/injection_sql.py to injection_sql.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/__init__.py to __init__.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/__main__.py to __main__.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/test_set.py to test_set.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/utils.py to utils.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/config.py to config.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/docs_utils.py to docs_utils.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/manager.py to manager.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/test_properties.py to test_properties.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/constants.py to constants.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/blacklisting.py to blacklisting.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/meta_ast.py to meta_ast.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/extension_loader.py to extension_loader.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/node_visitor.py to node_visitor.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/__init__.py to __init__.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/issue.py to issue.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/tester.py to tester.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/metrics.py to metrics.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/core/context.py to context.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/utils.py to utils.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/custom.py to custom.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/xml.py to xml.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/json.py to json.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/text.py to text.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/yaml.py to yaml.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/html.py to html.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/__init__.py to __init__.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/custom.py to custom.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/csv.py to csv.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/screen.py to screen.cpython-312.pyc byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/sarif.py to sarif.cpython-312.pyc -byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/__init__.py to __init__.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/html.py to html.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/__init__.py to __init__.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/xml.py to xml.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/text.py to text.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/formatters/json.py to json.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists/utils.py to utils.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists/imports.py to imports.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists/__init__.py to __init__.cpython-312.pyc +byte-compiling /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit/blacklists/calls.py to calls.cpython-312.pyc running install_egg_info Copying bandit.egg-info to /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages/bandit-1.7.10.egg-info Skipping SOURCES.txt @@ -1478,46 +1514,44 @@ + PYTHON3S=disabled + TEST_PARALLEL_OPT=--parallel + TEST_SERIAL_OPT= -+ echo WARNING: --no-py2 is deprecated, and always on. ++ for i in $@ ++ case "${1}" in ++ echo 'WARNING: --no-py2 is deprecated, and always on.' WARNING: --no-py2 is deprecated, and always on. + shift -+ py3versions -vr ++ for i in $@ ++ case "${1}" in +++ py3versions -vr + PYTHON3S=3.12 -+ [ yes = no ] -+ [ no = yes ] -+ [ 3.12 = disabled ] -+ echo 3.12 -+ cut -d. -f1 ++ '[' yes = no ']' ++ '[' no = yes ']' ++ for pyvers in ${PYTHON3S} ++ '[' 3.12 = disabled ']' +++ echo 3.12 +++ cut -d. -f1 + PYMAJOR=3 -+ echo ===> Testing with python (python3) ++ echo '===> Testing with python (python3)' ===> Testing with python (python3) -+ pwd -+ [ -d /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages ] -+ [ -z /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages ] -+ [ -e .stestr.conf ] -+ [ -x /usr/bin/python3-stestr ] +++ pwd ++ '[' -d /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages ']' ++ '[' -z /build/reproducible-path/bandit-1.7.10/debian/tmp/usr/lib/python3/dist-packages ']' ++ '[' -e .stestr.conf ']' ++ '[' -x /usr/bin/python3-stestr ']' + STESTR=stestr + rm -rf .stestr -+ PYTHON=python3.12+ stestrsubunit2pyunit - run --parallel --subunit tests\.(?!(.*unit\.cli\.test_baseline\.BanditBaselineToolTests\.test_bandit_baseline.*|.*functional\.test_runtime.*|.*functional\.test_baseline.*|.*functional\.test_functional\.FunctionalTests.*)) ++ subunit2pyunit ++ PYTHON=python3.12 ++ stestr run --parallel --subunit 'tests\.(?!(.*unit\.cli\.test_baseline\.BanditBaselineToolTests\.test_bandit_baseline.*|.*functional\.test_runtime.*|.*functional\.test_baseline.*|.*functional\.test_functional\.FunctionalTests.*))' [main] DEBUG logging initialized -Unable to parse config file /tmp/tmpmti50mq1 or missing [bandit] section -Multiple .bandit files found - scan separately or choose one with --ini - /tmp/tmppgtp1pro/.bandit, /tmp/tmppgtp1pro/second_config_directory/.bandit -tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger -tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: None -[main] INFO cli exclude tests: None - ... ok +Unable to parse config file /tmp/tmpnvk40jvk or missing [bandit] section tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger ... ok -[main] WARNING Could not open baseline report: base.json tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target ... ok +Multiple .bandit files found - scan separately or choose one with --ini + /tmp/tmp0x8f_kqm/.bandit, /tmp/tmp0x8f_kqm/second_config_directory/.bandit tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_bandit_files @@ -1528,29 +1562,21 @@ tests.unit.cli.test_main.BanditCLIMainTests.test_init_extensions ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val ... ok -[main] ERROR bandit.yaml : Could not read config file. tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_val_with_str_default_and_no_arg_val tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_val_with_str_default_and_no_arg_val ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_value tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_value ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: None +[main] INFO cli exclude tests: None +[main] WARNING Could not open baseline report: base.json tests.unit.cli.test_main.BanditCLIMainTests.test_main_baseline_ioerror tests.unit.cli.test_main.BanditCLIMainTests.test_main_baseline_ioerror ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults ... ok -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue ... ok -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults ... ok +[main] ERROR bandit.yaml : Could not read config file. tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable ... ok [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. @@ -1561,68 +1587,34 @@ [main] INFO using config: bandit.yaml [main] INFO running on Python 3.12.7 [text] INFO Text output written to file: output +tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger +tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results ... ok [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [main] INFO profile include tests: None -Config file '/tmp/tmpmbytg0s9.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins [main] INFO profile exclude tests: None [main] INFO cli include tests: None [main] INFO cli exclude tests: None [main] INFO using config: bandit.yaml [main] INFO running on Python 3.12.7 [text] INFO Text output written to file: output -tests.unit.core.test_config.TestGetOption.test_levels -tests.unit.core.test_config.TestGetOption.test_levels ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results ... ok -tests.unit.core.test_config.TestConfigCompat.test_bad_yaml -tests.unit.core.test_config.TestConfigCompat.test_bad_yaml ... ok -tests.unit.core.test_config.TestGetOption.test_levels_not_exist -tests.unit.core.test_config.TestGetOption.test_levels_not_exist ... ok -tests.unit.core.test_config.TestInit.test_file_does_not_exist -tests.unit.core.test_config.TestInit.test_file_does_not_exist ... ok -Config file '/tmp/tmpe3adwf0r.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins -Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -tests.unit.core.test_config.TestInit.test_settings -tests.unit.core.test_config.TestInit.test_settings ... ok -tests.unit.core.test_config.TestConfigCompat.test_blacklist_error -tests.unit.core.test_config.TestConfigCompat.test_blacklist_error ... ok -Config file '/tmp/tmp6o6uz0lv.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins -while parsing a flow sequence - in "/tmp/tmptcbuot3e.yaml", line 1, column 3 -expected ',' or ']', but got '' - in "/tmp/tmptcbuot3e.yaml", line 1, column 14 -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data ... ok -tests.unit.core.test_config.TestInit.test_yaml_invalid -tests.unit.core.test_config.TestInit.test_yaml_invalid ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults ... ok tests.unit.core.test_context.ContextTests.test__get_literal_value tests.unit.core.test_context.ContextTests.test__get_literal_value ... ok tests.unit.core.test_context.ContextTests.test_call_args tests.unit.core.test_context.ContextTests.test_call_args ... ok -Config file '/tmp/tmpur8a9yny.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_loggerConfig file '/tmp/tmptk3s5i9i.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins - ... ok -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test ... ok -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: None -[main] INFO cli exclude tests: None -[main] INFO using config: bandit.yaml -[main] INFO running on Python 3.12.7 -[text] INFO Text output written to file: output -Config file '/tmp/tmp80ha319t.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins tests.unit.core.test_context.ContextTests.test_call_args_count tests.unit.core.test_context.ContextTests.test_call_args_count ... ok tests.unit.core.test_context.ContextTests.test_call_function_name @@ -1641,6 +1633,14 @@ tests.unit.core.test_context.ContextTests.test_function_def_defaults_qual ... ok tests.unit.core.test_context.ContextTests.test_get_call_arg_at_position tests.unit.core.test_context.ContextTests.test_get_call_arg_at_position ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: None +[main] INFO cli exclude tests: None +[main] INFO using config: bandit.yaml +[main] INFO running on Python 3.12.7 +[text] INFO Text output written to file: output tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg ... ok tests.unit.core.test_context.ContextTests.test_is_module_being_imported @@ -1648,254 +1648,305 @@ tests.unit.core.test_context.ContextTests.test_is_module_imported_exact tests.unit.core.test_context.ContextTests.test_is_module_imported_exact ... ok tests.unit.core.test_context.ContextTests.test_is_module_imported_like -tests.unit.core.test_context.ContextTests.test_is_module_imported_like ... Config file '/tmp/tmppu__kfj4.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins -ok +tests.unit.core.test_context.ContextTests.test_is_module_imported_like ... ok tests.unit.core.test_context.ContextTests.test_node -tests.unit.core.test_context.ContextTests.test_node ... ok +tests.unit.core.test_context.ContextTests.test_node[main] INFO Using command line arg for config file + ... ok +[main] INFO Using ini file for skipped tests +[main] INFO Using ini file for selected tests +[main] INFO Using command line arg for selected targets tests.unit.core.test_context.ContextTests.test_repr tests.unit.core.test_context.ContextTests.test_repr ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: some_test +[main] INFO cli exclude tests: skip_test tests.unit.core.test_context.ContextTests.test_statement tests.unit.core.test_context.ContextTests.test_statement ... ok tests.unit.core.test_context.ContextTests.test_string_val tests.unit.core.test_context.ContextTests.test_string_val ... ok +Config file '/tmp/tmpp_0xanar.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] ERROR : +Legacy blacklist data found in config, overriding data plugins +Config file '/tmp/tmpda47erik.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Legacy blacklist data found in config, overriding data plugins +Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +tests.unit.core.test_config.TestGetSetting.test_not_exist +tests.unit.core.test_config.TestGetSetting.test_not_exist ... ok +Config file '/tmp/tmp68tv8wxf.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Legacy blacklist data found in config, overriding data plugins +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. tests.unit.core.test_docs_util.DocsUtilTests.test_import_call_bib tests.unit.core.test_docs_util.DocsUtilTests.test_import_call_bib ... ok -tests.unit.core.test_docs_util.DocsUtilTests.test_overwrite_bib_info -tests.unit.core.test_docs_util.DocsUtilTests.test_overwrite_bib_info ... ok -tests.unit.core.test_docs_util.DocsUtilTests.test_plugin_call_bib -tests.unit.core.test_docs_util.DocsUtilTests.test_plugin_call_bib ... [main] INFO Using command line arg for config file -ok -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node[main] INFO Using ini file for skipped tests - ... ok -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str[main] INFO Using ini file for selected tests -[main] INFO Using command line arg for selected targets - ... ok -tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping -tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping ... ok -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data ... ok -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results_and_with_exit_zero_flag tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results_and_with_exit_zero_flag ... ok -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude ... ok -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents ... ok -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [main] INFO profile include tests: None [main] INFO profile exclude tests: None -[main] INFO cli include tests: some_test -[main] INFO cli exclude tests: skip_test -Config file '/tmp/tmp2usnlhka.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO cli include tests: None +[main] INFO cli exclude tests: None +[manager] WARNING Failed to load baseline data: 'issue_cwe' +tests.unit.core.test_issue.IssueTests.test_get_code +tests.unit.core.test_issue.IssueTests.test_get_code ... ok +tests.unit.core.test_issue.IssueTests.test_issue_as_dict +tests.unit.core.test_issue.IssueTests.test_issue_as_dict[main] WARNING Baseline must be used with one of the following formats: ['custom', 'html', 'json', 'screen', 'txt'] + ... ok +tests.unit.core.test_issue.IssueTests.test_issue_create +tests.unit.core.test_issue.IssueTests.test_issue_createConfig file '/tmp/tmpt11w0ayj.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. + ... Legacy blacklist data found in config, overriding data plugins +ok +tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence +tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence ... ok +tests.unit.core.test_docs_util.DocsUtilTests.test_overwrite_bib_info +tests.unit.core.test_docs_util.DocsUtilTests.test_overwrite_bib_info ... ok +tests.unit.core.test_docs_util.DocsUtilTests.test_plugin_call_bib +tests.unit.core.test_docs_util.DocsUtilTests.test_plugin_call_bib ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults +tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults ... ok +Config file '/tmp/tmp6fzgbv9v.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. Legacy blacklist data found in config, overriding data plugins -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped ... ok -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat ... ok +tests.unit.core.test_issue.IssueTests.test_issue_filter_severity +tests.unit.core.test_issue.IssueTests.test_issue_filter_severity ... ok +tests.unit.core.test_issue.IssueTests.test_issue_str +tests.unit.core.test_issue.IssueTests.test_issue_str ... ok +tests.unit.core.test_issue.IssueTests.test_matches_issue +tests.unit.core.test_issue.IssueTests.test_matches_issue ... ok +Config file '/tmp/tmp8z8u6vte.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Legacy blacklist data found in config, overriding data plugins +tests.unit.formatters.test_sarif.SarifFormatterTests.test_report +tests.unit.formatters.test_sarif.SarifFormatterTests.test_report ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Config file '/tmp/tmpohptgm3k.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_main_handle_ini_options tests.unit.cli.test_main.BanditCLIMainTests.test_main_handle_ini_options ... ok -[main] ERROR : +Legacy blacklist data found in config, overriding data plugins +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config ... ok -Config file '/tmp/tmpb2j9y2q4.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Config file '/tmp/tmp2tt2a2k7.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. Legacy blacklist data found in config, overriding data plugins -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: None -[main] INFO cli exclude tests: None -[manager] WARNING Failed to load baseline data: 'issue_cwe' -[main] WARNING Baseline must be used with one of the following formats: ['custom', 'html', 'json', 'screen', 'txt'] -tests.unit.core.test_config.TestConfigCompat.test_converted_include -tests.unit.core.test_config.TestConfigCompat.test_converted_include ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format ... ok -Config file '/tmp/tmpwzlqo293.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -tests.unit.core.test_config.TestConfigCompat.test_deprecation_message -tests.unit.core.test_config.TestConfigCompat.test_deprecation_message ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found -tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found ... ok +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node ... ok +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue ... ok +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults ... ok +tests.unit.core.test_config.TestTomlConfig.test_bad_yaml +tests.unit.core.test_config.TestTomlConfig.test_bad_yaml ... ok [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [main] INFO profile include tests: None [main] INFO profile exclude tests: None [main] INFO cli include tests: None [main] INFO cli exclude tests: badID [main] ERROR Unknown test found in profile: badID -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests ... ok -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: badID -[main] INFO cli exclude tests: None -[main] ERROR Unknown test found in profile: badID -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests ... ok -[config] WARNING Config file '/tmp/tmpqolpygvc.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins -tests.unit.core.test_config.TestTomlConfig.test_bad_yaml -tests.unit.core.test_config.TestTomlConfig.test_bad_yaml ... ok -[config] WARNING Config file '/tmp/tmpbz_ktvno.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins -[config] WARNING Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Config file '/tmp/tmpfisforyt.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Config file '/tmp/tmp1hg38dx1.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Legacy blacklist data found in config, overriding data plugins tests.unit.core.test_config.TestTomlConfig.test_blacklist_error tests.unit.core.test_config.TestTomlConfig.test_blacklist_error ... ok -[config] WARNING Legacy blacklist data found in config, overriding data plugins tests.unit.core.test_config.TestTomlConfig.test_converted_blacklist_call_data tests.unit.core.test_config.TestTomlConfig.test_converted_blacklist_call_data ... ok -[config] WARNING Config file '/tmp/tmp_iqth_zv.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins + +usage: bandit-config-generator [-h] [--show-defaults] [-o OUTPUT_FILE] + [-t TESTS] [-s SKIPS] + +Bandit Config Generator + + This tool is used to generate an optional profile. The profile may be used + to include or skip tests and override values for plugins. + + When used to store an output profile, this tool will output a template that + includes all plugins and their default settings. Any settings which aren't + being overridden can be safely removed from the profile and default values + will be used. Bandit will prefer settings from the profile over the built + in values. + +options: + -h, --help show this help message and exit + --show-defaults show the default settings values for each plugin but do not output a profile + -o OUTPUT_FILE, --out OUTPUT_FILE + output file to save profile + -t TESTS, --tests TESTS + list of test names to run + -s SKIPS, --skip SKIPS + list of test names to skip +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none ... ok tests.unit.core.test_config.TestTomlConfig.test_converted_blacklist_call_test tests.unit.core.test_config.TestTomlConfig.test_converted_blacklist_call_test ... ok -[config] WARNING Config file '/tmp/tmp27ye9_5k.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format ... ok tests.unit.core.test_config.TestTomlConfig.test_converted_blacklist_import_data tests.unit.core.test_config.TestTomlConfig.test_converted_blacklist_import_data ... ok -[config] WARNING Config file '/tmp/tmppdremoiq.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one ... ok tests.unit.core.test_config.TestTomlConfig.test_converted_blacklist_import_test tests.unit.core.test_config.TestTomlConfig.test_converted_blacklist_import_test ... ok -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type ... ok -[config] WARNING Config file '/tmp/tmphs2ucpuy.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist ... Config file '/tmp/tmpsje0la41.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id ... ok +Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none ... ok tests.unit.core.test_config.TestTomlConfig.test_converted_exclude tests.unit.core.test_config.TestTomlConfig.test_converted_exclude ... ok -[config] WARNING Config file '/tmp/tmpmortcqtz.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: badID +[main] INFO cli exclude tests: None +[main] ERROR Unknown test found in profile: badID +tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found +tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found ... ok +tests.unit.formatters.test_csv.CsvFormatterTests.test_report +tests.unit.formatters.test_csv.CsvFormatterTests.test_report ... ok +tests.unit.formatters.test_xml.XmlFormatterTests.test_report +tests.unit.formatters.test_xml.XmlFormatterTests.test_report ... ok +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type ... ok tests.unit.core.test_config.TestTomlConfig.test_converted_exclude_blacklist tests.unit.core.test_config.TestTomlConfig.test_converted_exclude_blacklist ... ok -[config] WARNING Config file '/tmp/tmpbj84clt7.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins tests.unit.core.test_config.TestTomlConfig.test_converted_include tests.unit.core.test_config.TestTomlConfig.test_converted_include ... ok -[config] WARNING Config file '/tmp/tmp2g2023r5.toml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests ... ok tests.unit.core.test_config.TestTomlConfig.test_deprecation_message tests.unit.core.test_config.TestTomlConfig.test_deprecation_message ... ok -[screen] INFO Screen formatter output was not written to file: /tmp/tmpu83p9rx8, consider '-f txt' -tests.unit.core.test_issue.IssueTests.test_get_code -tests.unit.core.test_issue.IssueTests.test_get_code ... ok -tests.unit.core.test_issue.IssueTests.test_issue_as_dict -tests.unit.core.test_issue.IssueTests.test_issue_as_dict ... ok -tests.unit.core.test_issue.IssueTests.test_issue_create -tests.unit.core.test_issue.IssueTests.test_issue_create ... ok -tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence -tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence ... ok -tests.unit.core.test_issue.IssueTests.test_issue_filter_severity -tests.unit.core.test_issue.IssueTests.test_issue_filter_severity ... ok -tests.unit.core.test_issue.IssueTests.test_issue_str -tests.unit.core.test_issue.IssueTests.test_issue_str ... ok -tests.unit.core.test_issue.IssueTests.test_matches_issue -tests.unit.core.test_issue.IssueTests.test_matches_issue ... ok -tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues -tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues ... ok -tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue -tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue ... ok -[ INFO ] No output format specified, using terminal -[screen] INFO Screen formatter output was not written to file: /tmp/tmp2k9oy5se, consider '-f txt' -tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_baseline -tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_baseline ... ok -[screen] INFO Screen formatter output was not written to file: /tmp/tmpjhn8t3zv, consider '-f txt' -[screen] INFO Screen formatter output was not written to file: /tmp/tmpjhn8t3zv, consider '-f txt' -tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline -tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline ... ok -[json] INFO JSON output written to file: /tmp/tmpje1gxzh9 +tests.unit.core.test_manager.ManagerTests.test_compare_baseline +tests.unit.core.test_manager.ManagerTests.test_compare_baseline ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests ... ok +tests.unit.core.test_manager.ManagerTests.test_create_manager +tests.unit.core.test_manager.ManagerTests.test_create_manager ... ok +tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile +tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude ... ok tests.unit.core.test_util.UtilTests.test_check_ast_node_good tests.unit.core.test_util.UtilTests.test_check_ast_node_good ... ok -[ ERROR ] Current working directory is dirty and must be resolved -tests.unit.formatters.test_yaml.YamlFormatterTests.test_report -tests.unit.formatters.test_yaml.YamlFormatterTests.test_report ... ok -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo ... ok -Run started:2024-10-19 16:38:27.040628 - -Test results: -ISSUE_OUTPUT_TEXT --------------------------------------------------- -ISSUE_OUTPUT_TEXT - --- Candidate Issues -- -ISSUE_OUTPUT_TEXT - - -ISSUE_OUTPUT_TEXT - - --------------------------------------------------- - -Code scanned: - Total lines of code: 0 - Total lines skipped (#nosec): 0 - -Run metrics: - Total issues (by severity): - Undefined: 0 - Low: 0 - Medium: 0 - High: 0 - Total issues (by confidence): - Undefined: 0 - Low: 0 - Medium: 0 - High: 0 -Files skipped (0): -Run started:2024-10-19 16:38:27.049498 -Files in scope (1): - binding.py (score: {SEVERITY: 1, CONFIDENCE: 1}) -Files excluded (1): - def.py - -Test results: -ISSUE_OUTPUT_TEXT --------------------------------------------------- -ISSUE_OUTPUT_TEXT --------------------------------------------------- - -Code scanned: - Total lines of code: 1000 - Total lines skipped (#nosec): 50 - -Run metrics: - Total issues (by severity): - Undefined: 1 - Low: 1 - Medium: 1 - High: 1 - Total issues (by confidence): - Undefined: 1 - Low: 1 - Medium: 1 - High: 1 -Files skipped (1): - abc.py (File is bad) +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline ... ok +[config] WARNING Config file '/tmp/tmptp387j2t.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_dir +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_dir ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_glob +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_glob ... ok +tests.unit.core.test_config.TestConfigCompat.test_bad_yaml +tests.unit.core.test_config.TestConfigCompat.test_bad_yaml ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_include +tests.unit.core.test_manager.ManagerTests.test_discover_files_include ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files ... ok tests.unit.core.test_util.UtilTests.test_deepgetattr tests.unit.core.test_util.UtilTests.test_deepgetattr ... ok +[ INFO ] No output format specified, using terminal +[config] WARNING Config file '/tmp/tmpbmz4aj4l.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +[config] WARNING Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Skipping directory (thing), use -r flag to scan contents +tests.unit.core.test_config.TestConfigCompat.test_blacklist_error +tests.unit.core.test_config.TestConfigCompat.test_blacklist_error ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip ... ok +tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches +tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches ... ok +tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir +tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir ... ok +tests.unit.core.test_manager.ManagerTests.test_is_file_included +tests.unit.core.test_manager.ManagerTests.test_is_file_included ... ok +tests.unit.core.test_manager.ManagerTests.test_matches_globlist +tests.unit.core.test_manager.ManagerTests.test_matches_globlist ... ok tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid ... ok +tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format +tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format ... ok +[ ERROR ] Current working directory is dirty and must be resolved +tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format +tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format ... ok +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json ... ok +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success ... ok +tests.unit.core.test_manager.ManagerTests.test_results_count +tests.unit.core.test_manager.ManagerTests.test_results_count ... ok +[config] WARNING Config file '/tmp/tmp55gb2900.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data ... ok +tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror +tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror ... ok +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo ... ok +tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt +tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt ... ok tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed ... ok +[config] WARNING Config file '/tmp/tmpk1rkvgdr.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.formatters.test_custom.CustomFormatterTests.test_report +tests.unit.formatters.test_custom.CustomFormatterTests.test_report ... ok +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test ... ok +[config] WARNING Config file '/tmp/tmp26k164uz.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data ... ok tests.unit.core.test_util.UtilTests.test_escaped_representation_simple tests.unit.core.test_util.UtilTests.test_escaped_representation_simple ... ok +[config] WARNING Config file '/tmp/tmphuxhwed_.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test ... ok tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable ... ok +tests.unit.formatters.test_yaml.YamlFormatterTests.test_report +tests.unit.formatters.test_yaml.YamlFormatterTests.test_report ... ok +[config] WARNING Config file '/tmp/tmprz2rt_tp.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude ... ok +[config] WARNING Config file '/tmp/tmpngsv5r1q.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist ... ok tests.unit.core.test_util.UtilTests.test_get_call_name1 tests.unit.core.test_util.UtilTests.test_get_call_name1 ... ok tests.unit.core.test_util.UtilTests.test_get_call_name2 tests.unit.core.test_util.UtilTests.test_get_call_name2 ... ok +[config] WARNING Config file '/tmp/tmpduo3jog_.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_include +tests.unit.core.test_config.TestConfigCompat.test_converted_include ... ok +[config] WARNING Config file '/tmp/tmph212vx8l.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_deprecation_message +tests.unit.core.test_config.TestConfigCompat.test_deprecation_message ... ok +tests.unit.core.test_config.TestGetOption.test_levels +tests.unit.core.test_config.TestGetOption.test_levels ... ok +[ ERROR ] File bandit_baseline_result.txt already exists, aborting +tests.unit.core.test_config.TestGetOption.test_levels_not_exist +tests.unit.core.test_config.TestGetOption.test_levels_not_exist ... ok tests.unit.core.test_util.UtilTests.test_get_call_name3 tests.unit.core.test_util.UtilTests.test_get_call_name3 ... ok -[ ERROR ] File bandit_baseline_result.txt already exists, aborting tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file ... ok tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingend @@ -1904,99 +1955,71 @@ tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingmid ... ok tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_syms tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_syms ... ok +[ INFO ] No output format specified, using terminal tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical ... ok -[ INFO ] No output format specified, using terminal +[ ERROR ] Temporary file _bandit_baseline_run.json_ needs to be removed prior to running +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file ... ok tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir ... ok -[ ERROR ] Temporary file _bandit_baseline_run.json_ needs to be removed prior to running tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path ... ok -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file ... ok tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend ... ok tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid ... ok tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot ... ok [ INFO ] No output format specified, using terminal [ ERROR ] Git command not found +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical ... ok tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys ... ok [ INFO ] No output format specified, using terminal [ ERROR ] Bandit baseline must be called from a git project root tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot ... ok tests.unit.core.test_util.UtilTests.test_linerange tests.unit.core.test_util.UtilTests.test_linerange ... ok tests.unit.core.test_util.UtilTests.test_namespace_path_join tests.unit.core.test_util.UtilTests.test_namespace_path_join ... ok tests.unit.core.test_util.UtilTests.test_namespace_path_split tests.unit.core.test_util.UtilTests.test_namespace_path_split ... ok -Unable to parse config file /tmp/tmptfnkijmt or missing [bandit] section +[ INFO ] No output format specified, using terminal +Unable to parse config file /tmp/tmp8yutzb9q or missing [bandit] section +[ ERROR ] Bandit baseline must not be called with the -o option tests.unit.core.test_util.UtilTests.test_parse_ini_file tests.unit.core.test_util.UtilTests.test_parse_ini_file ... ok +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument ... ok tests.unit.core.test_util.UtilTests.test_path_for_function tests.unit.core.test_util.UtilTests.test_path_for_function ... ok Cannot resolve file path for module sys tests.unit.core.test_util.UtilTests.test_path_for_function_no_file tests.unit.core.test_util.UtilTests.test_path_for_function_no_file ... ok -[ INFO ] No output format specified, using terminal Cannot resolve file where 1 is defined tests.unit.core.test_util.UtilTests.test_path_for_function_no_module tests.unit.core.test_util.UtilTests.test_path_for_function_no_module ... ok -[ ERROR ] Bandit baseline must not be called with the -o option -tests.unit.formatters.test_json.JsonFormatterTests.test_report -tests.unit.formatters.test_json.JsonFormatterTests.test_report ... ok -tests.unit.formatters.test_text.TextFormatterTests.test_no_issues -tests.unit.formatters.test_text.TextFormatterTests.test_no_issues ... ok -tests.unit.formatters.test_text.TextFormatterTests.test_output_issue -tests.unit.formatters.test_text.TextFormatterTests.test_output_issue ... ok -tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline -tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline ... ok -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument ... ok -tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline -tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline ... ok -tests.unit.formatters.test_xml.XmlFormatterTests.test_report -tests.unit.formatters.test_xml.XmlFormatterTests.test_report ... ok - -usage: bandit-config-generator [-h] [--show-defaults] [-o OUTPUT_FILE] - [-t TESTS] [-s SKIPS] - -Bandit Config Generator - - This tool is used to generate an optional profile. The profile may be used - to include or skip tests and override values for plugins. - - When used to store an output profile, this tool will output a template that - includes all plugins and their default settings. Any settings which aren't - being overridden can be safely removed from the profile and default values - will be used. Bandit will prefer settings from the profile over the built - in values. - -options: - -h, --help show this help message and exit - --show-defaults show the default settings values for each plugin but do not output a profile - -o OUTPUT_FILE, --out OUTPUT_FILE - output file to save profile - -t TESTS, --tests TESTS - list of test names to run - -s SKIPS, --skip SKIPS - list of test names to skip +tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping +tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping ... ok [ INFO ] No output format specified, using terminal +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents ... ok [ ERROR ] Unable to get current or parent commit +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped ... ok tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure ... ok +tests.unit.formatters.test_json.JsonFormatterTests.test_report +tests.unit.formatters.test_json.JsonFormatterTests.test_report ... ok [ INFO ] No output format specified, using terminal -[ INFO ] Got current commit: [812aef2bc50820ed15dd0fcbebb67ac0b4832935 master] +[ INFO ] Got current commit: [f80f9deb290a20afb3b7a9be71d599e81ff9aed9 master] [ ERROR ] Parent commit not available tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit ... ok @@ -2005,114 +2028,128 @@ tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo ... ok [ INFO ] No output format specified, using terminal -[ INFO ] Got current commit: [ba1bd5398b100c85250f348c7037c5efa080415c master] -[ INFO ] Got parent commit: [458677c74c93dc586970d0b4bab9cbd74ab3b1fb master~1] +[ INFO ] Got current commit: [e77dad83bce0cb7ef32f53d0f3ee2494faefc399 master] +[ INFO ] Got parent commit: [6be400f2d5e4088bf166d2a9879966b95c02c0d5 master~1] [ INFO ] Getting Bandit baseline results -[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmp17tf5gw6'] +[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmpq9hm09pd'] Output: None [ INFO ] Comparing Bandit results to baseline -[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmp17tf5gw6'] +[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmpq9hm09pd'] Output: None tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error ... ok -tests.unit.core.test_config.TestGetSetting.test_not_exist -tests.unit.core.test_config.TestGetSetting.test_not_exist ... ok -tests.unit.core.test_manager.ManagerTests.test_compare_baseline -tests.unit.core.test_manager.ManagerTests.test_compare_baseline ... ok -tests.unit.core.test_manager.ManagerTests.test_create_manager -tests.unit.core.test_manager.ManagerTests.test_create_manager ... ok -tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile -tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_dir -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_dir ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_glob -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_glob ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_include -tests.unit.core.test_manager.ManagerTests.test_discover_files_include ... ok -Skipping directory (thing), use -r flag to scan contents -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip ... ok -tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches -tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches ... ok -tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir -tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir ... ok -tests.unit.core.test_manager.ManagerTests.test_is_file_included -tests.unit.core.test_manager.ManagerTests.test_is_file_included ... ok -tests.unit.core.test_manager.ManagerTests.test_matches_globlist -tests.unit.core.test_manager.ManagerTests.test_matches_globlist ... ok -tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format -tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format ... ok -tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format -tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format ... ok -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json ... ok -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success ... ok -tests.unit.core.test_manager.ManagerTests.test_results_count -tests.unit.core.test_manager.ManagerTests.test_results_count ... ok -tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror -tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror ... ok -tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt -tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults -tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none ... ok -tests.unit.formatters.test_csv.CsvFormatterTests.test_report -tests.unit.formatters.test_csv.CsvFormatterTests.test_report ... ok -tests.unit.formatters.test_custom.CustomFormatterTests.test_report -tests.unit.formatters.test_custom.CustomFormatterTests.test_report ... ok -tests.unit.formatters.test_sarif.SarifFormatterTests.test_report -tests.unit.formatters.test_sarif.SarifFormatterTests.test_report ... ok +tests.unit.core.test_config.TestInit.test_file_does_not_exist +tests.unit.core.test_config.TestInit.test_file_does_not_exist ... ok +tests.unit.core.test_config.TestInit.test_settings +tests.unit.core.test_config.TestInit.test_settings ... ok +while parsing a flow sequence + in "/tmp/tmpr_7eovg8.yaml", line 1, column 3 +expected ',' or ']', but got '' + in "/tmp/tmpr_7eovg8.yaml", line 1, column 14 +tests.unit.core.test_config.TestInit.test_yaml_invalid +tests.unit.core.test_config.TestInit.test_yaml_invalid ... ok +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node ... ok +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str ... ok +tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues +tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues ... ok +tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue +tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue ... ok +tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_baseline +tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_baseline ... ok +tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline +tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_no_issues +tests.unit.formatters.test_text.TextFormatterTests.test_no_issues ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_output_issue +tests.unit.formatters.test_text.TextFormatterTests.test_output_issue ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline +tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline +tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline ... ok None +Run started:2024-10-19 16:54:59.515956 + +Test results: +ISSUE_OUTPUT_TEXT +-------------------------------------------------- +ISSUE_OUTPUT_TEXT + +-- Candidate Issues -- +ISSUE_OUTPUT_TEXT + + +ISSUE_OUTPUT_TEXT + + +-------------------------------------------------- + +Code scanned: + Total lines of code: 0 + Total lines skipped (#nosec): 0 + +Run metrics: + Total issues (by severity): + Undefined: 0 + Low: 0 + Medium: 0 + High: 0 + Total issues (by confidence): + Undefined: 0 + Low: 0 + Medium: 0 + High: 0 +Files skipped (0): +Run started:2024-10-19 16:54:59.531496 +Files in scope (1): + binding.py (score: {SEVERITY: 1, CONFIDENCE: 1}) +Files excluded (1): + def.py + +Test results: +ISSUE_OUTPUT_TEXT +-------------------------------------------------- +ISSUE_OUTPUT_TEXT +-------------------------------------------------- + +Code scanned: + Total lines of code: 1000 + Total lines skipped (#nosec): 50 + +Run metrics: + Total issues (by severity): + Undefined: 1 + Low: 1 + Medium: 1 + High: 1 + Total issues (by confidence): + Undefined: 1 + Low: 1 + Medium: 1 + High: 1 +Files skipped (1): + abc.py (File is bad) ---------------------------------------------------------------------- -Ran 179 tests in 11.758s +Ran 179 tests in 54.280s OK + stestr slowest -Test id Runtime (s) ------------------------------------------------------------------------------------------ ----------- -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error 1.898 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit 1.371 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure 0.924 -tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline 0.556 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo 0.277 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file 0.169 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument 0.116 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure 0.102 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file 0.091 -tests.unit.core.test_util.UtilTests.test_check_ast_node_good 0.084 +Test id Runtime (s) +----------------------------------------------------------------------------------------------- ----------- +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo 1.212 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file 0.955 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error 0.898 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit 0.731 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure 0.711 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure 0.682 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file 0.639 +tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results_and_with_exit_zero_flag 0.536 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument 0.498 +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings 0.421 + rm -rf .stestr # Generate the config file mkdir -p /build/reproducible-path/bandit-1.7.10/debian/bandit/etc/bandit @@ -2138,9 +2175,9 @@ make[1]: pyversions: No such file or directory py3versions: no X-Python3-Version in control file, using supported versions dh_python3 --shebang=/usr/bin/python3 -I: dh_python3 tools:113: replacing shebang in debian/python3-bandit/usr/bin/bandit I: dh_python3 tools:113: replacing shebang in debian/python3-bandit/usr/bin/bandit-baseline I: dh_python3 tools:113: replacing shebang in debian/python3-bandit/usr/bin/bandit-config-generator +I: dh_python3 tools:113: replacing shebang in debian/python3-bandit/usr/bin/bandit make[1]: Leaving directory '/build/reproducible-path/bandit-1.7.10' debian/rules override_dh_installinit make[1]: Entering directory '/build/reproducible-path/bandit-1.7.10' @@ -2153,14 +2190,14 @@ cat /usr/share/openstack-pkg-tools/init-script-template >>$MYINIT.init ; \ pkgos-gen-systemd-unit $i ; \ done -+ ls -1 debian/*.init.in +++ ls -1 'debian/*.init.in' ls: cannot access 'debian/*.init.in': No such file or directory # If there's a service.in file, use that one instead of the generated one set -e ; set -x ; for i in `ls -1 debian/*.service.in`; do \ MYPKG=`echo $i | sed s/.service.in//` ; \ cp $MYPKG.service.in $MYPKG.service ; \ done -+ ls -1 debian/*.service.in +++ ls -1 'debian/*.service.in' ls: cannot access 'debian/*.service.in': No such file or directory # Generate the systemd unit if there's no already existing .service.in set -e ; set -x ; for i in `ls debian/*.init.in` ; do \ @@ -2169,7 +2206,7 @@ pkgos-gen-systemd-unit $i ; \ fi \ done -+ ls debian/*.init.in +++ ls 'debian/*.init.in' ls: cannot access 'debian/*.init.in': No such file or directory dh_installinit --error-handler=true make[1]: Leaving directory '/build/reproducible-path/bandit-1.7.10' @@ -2204,12 +2241,14 @@ dpkg-buildpackage: info: binary-only upload (no source included) dpkg-genchanges: info: including full source code in upload I: copying local configuration +I: user script /srv/workspace/pbuilder/10557/tmp/hooks/B01_cleanup starting +I: user script /srv/workspace/pbuilder/10557/tmp/hooks/B01_cleanup finished I: unmounting dev/ptmx filesystem I: unmounting dev/pts filesystem I: unmounting dev/shm filesystem I: unmounting proc filesystem I: unmounting sys filesystem I: cleaning the build env -I: removing directory /srv/workspace/pbuilder/27558 and its subdirectories -I: Current time: Sat Oct 19 04:38:46 -12 2024 -I: pbuilder-time-stamp: 1729355926 +I: removing directory /srv/workspace/pbuilder/10557 and its subdirectories +I: Current time: Sun Oct 20 06:56:19 +14 2024 +I: pbuilder-time-stamp: 1729356979