Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add CWE information to snmp_security_check #787

Closed
wants to merge 1 commit into from
Closed

Add CWE information to snmp_security_check #787

wants to merge 1 commit into from

Conversation

ericwb
Copy link
Member

@ericwb ericwb commented Jan 30, 2022

One of the newest plugins is snmp_security_check. With the merge
of CWE information, the snmp_security_check plugin was missed
as the PRs were merged around the same time.

This commit adds CWE values of CLEARTEXT_TRANSMISSION for the
two checks of snmp_security_check.

Signed-off-by: Eric Brown browne@vmware.com

@ericwb
Add CWE information to snmp_security_check
4e0c98f 
One of the newest plugins is snmp_security_check. With the merge
of CWE information, the snmp_security_check plugin was missed
as the PRs were merged around the same time.

This commit adds CWE values of CLEARTEXT_TRANSMISSION for the
two checks of snmp_security_check.

Signed-off-by: Eric Brown <browne@vmware.com>
@ericwb ericwb added this to the Release 1.7.3 milestone Jan 30, 2022
sigmavirus24
sigmavirus24 reviewed Jan 31, 2022
View reviewed changes
bandit/core/cwemap.py
@@ -23,6 +23,8 @@
"B505": issue.Cwe.INADEQUATE_ENCRYPTION_STRENGTH,
"B506": issue.Cwe.IMPROPER_INPUT_VALIDATION,
"B507": issue.Cwe.IMPROPER_CERT_VALIDATION,
"B508": issue.Cwe.CLEARTEXT_TRANSMISSION,
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I didn't get a chance to review the last PR, but I'm wondering if we really need this map here?

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I was thinking the same, it would make it harder/confusing for 3rd party plugins to have this map here. That being said, I wanted to merge this change and fix up a number of other things as a result of this PR.

@ericwb ericwb removed this from the Release 1.7.3 milestone Feb 2, 2022
@ericwb
Copy link
Member Author

ericwb commented Feb 2, 2022

This PR made redundant by #789

@ericwb ericwb closed this Feb 2, 2022
@ericwb ericwb deleted the snmp_cwe branch February 5, 2022 03:55
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@sigmavirus24 sigmavirus24 sigmavirus24 left review comments

@ghugo ghugo Awaiting requested review from ghugo

@lukehinds lukehinds Awaiting requested review from lukehinds

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@ericwb @sigmavirus24