New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

HYDRA-861 & HYDRA-932 : Fix MtoA & LookdevX loading in tests + Related test improvements #108

Merged

lilike-adsk merged 19 commits into dev from debloip/HYDRA-861/HYDRA-932/fix-mtoa-loodkevx-tests

Mar 26, 2024

Merged

HYDRA-861 & HYDRA-932 : Fix MtoA & LookdevX loading in tests + Related test improvements #108

HYDRA-861 : Adjust testRefinement and testUsdNativeInstancePicking + …

Autodesk Chorus / security/bandit completed Mar 26, 2024 in 6s

3 issue(s) found

Summary of Issues

Type	Count	Severity	Secure Coding Guidelines
B404: blacklist	1	LOW	PYTH-INJC-30
B607: start_process_with_partial_path	1	LOW	PYTH-INJC-30
B603: subprocess_without_shell_equals_true	1	LOW	PYTH-INJC-30

How do I clear all these issues?

If you suspect these issues are not actual issues, click “Clear All Issues” above. Click here for more details.

Details and Annotations

Details

bandit version 1.7.8

Annotations

Check notice on line 28 in test/testUtils/mtohUtils.py

autodesk-chorus / security/bandit

B404: blacklist

Consider possible security implications associated with the subprocess module.
secure coding id: PYTH-INJC-30.

Check notice on line 98 in test/testUtils/mtohUtils.py

autodesk-chorus / security/bandit

B607: start_process_with_partial_path

Starting a process with a partial executable path
secure coding id: PYTH-INJC-30.

Check notice on line 98 in test/testUtils/mtohUtils.py

autodesk-chorus / security/bandit

B603: subprocess_without_shell_equals_true

subprocess call - check for execution of untrusted input.
secure coding id: PYTH-INJC-30.

View more details on Autodesk Chorus