Trivial: Update pypi url to new url
Change-Id: I3db80988676ca7c25c9ba6c567b4cae60b54ba86
This commit is contained in:
parent
209182c3ee
commit
737418c4ad
@ -6,15 +6,15 @@ Bandit
|
||||
:alt: Bandit team and repository tags
|
||||
|
||||
.. image:: https://img.shields.io/pypi/v/bandit.svg
|
||||
:target: https://pypi.python.org/pypi/bandit/
|
||||
:target: https://pypi.python.org/project/bandit/
|
||||
:alt: Latest Version
|
||||
|
||||
.. image:: https://img.shields.io/pypi/pyversions/bandit.svg
|
||||
:target: https://pypi.python.org/pypi/bandit/
|
||||
:target: https://pypi.python.org/project/bandit/
|
||||
:alt: Python Versions
|
||||
|
||||
.. image:: https://img.shields.io/pypi/format/bandit.svg
|
||||
:target: https://pypi.python.org/pypi/bandit/
|
||||
:target: https://pypi.python.org/project/bandit/
|
||||
:alt: Format
|
||||
|
||||
.. image:: https://img.shields.io/badge/license-Apache%202-blue.svg
|
||||
|
@ -216,7 +216,7 @@ B313 - B320: XML
|
||||
----------------
|
||||
|
||||
Most of this is based off of Christian Heimes' work on defusedxml:
|
||||
https://pypi.python.org/pypi/defusedxml/#defusedxml-sax
|
||||
https://pypi.python.org/project/defusedxml/#defusedxml-sax
|
||||
|
||||
Using various XLM methods to parse untrusted XML data is known to be vulnerable
|
||||
to XML attacks. Methods should be replaced with their defusedxml equivalents.
|
||||
@ -442,7 +442,7 @@ def gen_blacklist():
|
||||
))
|
||||
|
||||
# Most of this is based off of Christian Heimes' work on defusedxml:
|
||||
# https://pypi.python.org/pypi/defusedxml/#defusedxml-sax
|
||||
# https://pypi.python.org/project/defusedxml/#defusedxml-sax
|
||||
|
||||
xml_msg = ('Using {name} to parse untrusted XML data is known to be '
|
||||
'vulnerable to XML attacks. Replace {name} with its '
|
||||
|
@ -24,7 +24,7 @@ possible security implications. The following blacklist tests are run against
|
||||
any import statements or calls encountered in the scanned code base.
|
||||
|
||||
Note that the XML rules listed here are mostly based off of Christian Heimes'
|
||||
work on defusedxml: https://pypi.python.org/pypi/defusedxml
|
||||
work on defusedxml: https://pypi.python.org/project/defusedxml
|
||||
|
||||
B401: import_telnetlib
|
||||
----------------------
|
||||
@ -244,7 +244,7 @@ def gen_blacklist():
|
||||
))
|
||||
|
||||
# Most of this is based off of Christian Heimes' work on defusedxml:
|
||||
# https://pypi.python.org/pypi/defusedxml/#defusedxml-sax
|
||||
# https://pypi.python.org/project/defusedxml/#defusedxml-sax
|
||||
|
||||
xml_msg = ('Using {name} to parse untrusted XML data is known to be '
|
||||
'vulnerable to XML attacks. Replace {name} with the equivalent '
|
||||
|
Loading…
Reference in New Issue
Block a user