Replies: 1 comment
-
Might help to point to some other examples. I don't know if it can be done with poetry as I have never tried. But take a look at these: https://github.com/lyft/bandit-high-entropy-string |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I am using bandit (1.7.8) with an existing python project. I want to write my own custom Test Plugins. I am using Poetry to manage the package dependencies of my existing project. I have a
bandit.yml
file that specifiesin built bandit plugin configurations.What is the best way to set my custom plugin so that Bandit recognises it automatically? My folder structure is:
In this case, what is the best way to set up the project to automatically detect the plugin logic in
my_custom_plugin.py
?I have tried:
pyproject.toml
:setup.cfg
/setup.py
file(s) inplugins/
directory to treatplugins/
as a package and define the entry points, in conjunction with importingplugins/
as a package in my rootpyproject.toml
.Neither of these approaches seemed to work.
Any insight would be much appreciated!
example code in my_custom_plugin I have used (error when httpx is called):
Beta Was this translation helpful? Give feedback.
All reactions