From 72652d39527b1166877929ce420e8fabd23c5197 Mon Sep 17 00:00:00 2001
From: Eric Brown <browne@vmware.com>
Date: Thu, 24 Feb 2022 19:50:06 -0800
Subject: [PATCH] Use CWE link in HTML formatter

The CWE link is currently output in plain text. Given this is an
HTML outoput formatter, it's only natural to use reference link.

Signed-off-by: Eric Brown <browne@vmware.com>
---
 bandit/formatters/html.py | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/bandit/formatters/html.py b/bandit/formatters/html.py
index 48b6ac37f..ff86d8fa4 100644
--- a/bandit/formatters/html.py
+++ b/bandit/formatters/html.py
@@ -266,8 +266,8 @@ def report(manager, fileobj, sev_level, conf_level, lines=-1):
     <b>Test ID:</b> {test_id}<br>
     <b>Severity: </b>{severity}<br>
     <b>Confidence: </b>{confidence}<br>
-    <b>CWE: </b>{cwe}<br>
-    <b>File: </b><a href="{path}" target="_blank">{path}</a> <br>
+    <b>CWE: <a href="{cwe_link}" target="_blank">CWE-{cwe.id}</a><br>
+    <b>File: </b><a href="{path}" target="_blank">{path}</a><br>
     <b>Line number: </b>{line_number}<br>
     <b>More info: </b><a href="{url}" target="_blank">{url}</a><br>
 {code}
@@ -367,6 +367,7 @@ def report(manager, fileobj, sev_level, conf_level, lines=-1):
             severity=issue.severity,
             confidence=issue.confidence,
             cwe=issue.cwe,
+            cwe_link=issue.cwe.link(),
             path=issue.fname,
             code=code,
             candidates=candidates,