Add wildcard import advantage to docs

duo-labs · Nov 27, 2019 · a4c84a0 · a4c84a0
1 parent 20b4a9d
commit a4c84a0
Showing 1 changed file with 3 additions and 0 deletions.
diff --git a/docs/README.md b/docs/README.md
@@ -59,6 +59,9 @@ the [`TarFile.extractall`](https://docs.python.org/3/library/tarfile.html#tarfil
 object method can often lead to security vulnerabilities. Dlint tracks variable
 names of instantiated objects and searches for insecure methods used by these
 specific objects.
+* Dlint can identify insecurities arising from the use of wildcard imports. For
+example, `from os import *`, which results in insecure use of the `os` module,
+such as a `system` call.
 * Dlint is built upon the ubiquitous [Flake8](https://flake8.pycqa.org/en/latest/)
 project so it's easy to use, provides a fully-featured interface, and is backed
 by the [Python Code Quality Authority](https://github.com/PyCQA). This means