Skip to content
/ flake8-webcheck Public

Static code analysis for python APIs. (Flake8 extension)

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

lgo/flake8-webcheck

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

4 Commits

.gitignore

.gitignore

 
 

MANIFEST.in

MANIFEST.in

 
 

README.md

README.md

 
 

flake8_webcheck.py

flake8_webcheck.py

 
 

setup.cfg

setup.cfg

 
 

setup.py

setup.py

 
 

Repository files navigation

flake8-webcheck

A flake8 extension to do static analysis on projects. This package has been tested against flake8 3.0.4 and python 3.5.2

Currently the functionality being built out is to check for the presence of decorators. A use case is outlined below:

Decorator presence check

Given a set of API RequestHandler classes, from Tornado, check if each request function has a permission level set by a decorator. Doing this check ensures that changes always explicitly define a permission to make sure no security slips are created, causing open APIs.

import torando.web

class MyAPIRequestHandler(torando.web.RequestHandler):

  @permission.anonymous # OK, permission is defined
  def get(self):
      ...

  @permission.event.organizer # OK, permission is defined
  def put(self):
    ...


  def post(self): # Error, no permission defined for endpoint
    ...

About

Static code analysis for python APIs. (Flake8 extension)

Topics

python static-code-analysis linter flake8

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

v0.1.0 Latest
Nov 4, 2016

Packages

No packages published

Languages