Skip to content

Commit

Permalink
codeql for dependabot.
Browse files Browse the repository at this point in the history
  • Loading branch information
@anarkiwi
anarkiwi committed Nov 9, 2023
1 parent bc022a9 commit ac1e552
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions gamutrf/worker.py
View file
Original file line number Diff line number Diff line change
Expand Up @@ -326,15 +326,15 @@ def process_rssi(self, record_args, sock):

def proxy_rssi(self, rssi_addr, record_args):
with socket.socket(socket.AF_INET, socket.SOCK_DGRAM) as sock:
sock.bind((rssi_addr, RSSI_UDP_PORT)) # nosec
sock.bind((rssi_addr, RSSI_UDP_PORT)) # nosec # codeql[py/bind-socket-all-network-interfaces]

Check warning

Code scanning / CodeQL

Binding a socket to all network interfaces Medium

'0.0.0.0' binds a socket to all interfaces.
self.process_rssi(record_args, sock)

def serve_rssi(self):
record_args = self.q.get()
logging.info(f"got request {record_args}")
if self.arguments.rssi_external:
logging.info("proxying external RSSI")
self.proxy_rssi("0.0.0.0", record_args) # nosec
self.proxy_rssi("0.0.0.0", record_args) # nosec # codeql[py/bind-socket-all-network-interfaces]
else:
center_freq = int(record_args["center_freq"])
try:
Expand Down

0 comments on commit ac1e552

Please sign in to comment.