📄️ Harden potentially insecure deserialization operations
defectdojo:python/avoid-insecure-deserialization
📄️ Use Safe Parameters in Django Response `set_cookie` Call
defectdojo:python/django-secure-set-cookie
📄️ Add timeout to `requests` calls
pixee:python/add-requests-timeouts
📄️ Separate Lock Instantiation from `with` Call
pixee:python/bad-lock-with-statement
📄️ Removed break or continue statement out of loop
pixee:python/break-or-continue-out-of-loop
📄️ Simplify Boolean Expressions Using `isinstance` and `issubclass`
pixee:python/combine-isinstance-issubclass
📄️ Simplify Boolean Expressions Using `startswith` and `endswith`
pixee:python/combine-startswith-endswith
📄️ Disable GraphQL Introspection to Prevent Sensitive Data Leakage
pixee:python/disable-graphql-introspection
📄️ Disable Django Debug Mode
pixee:python/django-debug-flag-on
📄️ Set content type to `application/json` for `django.http.HttpResponse` with JSON data
pixee:python/django-json-response-type
📄️ Ensure Django Model Classes Implement a `__str__` Method
pixee:python/django-model-without-dunder-str
📄️ Ensure Django @receiver is the first decorator
pixee:python/django-receiver-on-top
📄️ Secure Setting for Django `SESSION_COOKIE_SECURE` flag
pixee:python/django-session-cookie-secure-off
📄️ Enable Jinja2 Autoescape
pixee:python/enable-jinja2-autoescape
📄 ️ Ensure bare exception statements are raised
pixee:python/exception-without-raise
📄️ Fix `assert` on Non-Empty Tuple Literal
pixee:python/fix-assert-tuple
📄️ Use High-Level `asyncio` API Functions to Create Tasks
pixee:python/fix-async-task-instantiation
📄️ Replace `dataclass` Mutable Default Values with Call to `field`
pixee:python/fix-dataclass-defaults
📄️ Replace Deprecated `abc` Decorators
pixee:python/fix-deprecated-abstractproperty
📄️ Replace Deprecated `logging.warn`
pixee:python/fix-deprecated-logging-warn
📄️ Replace Comparisons to Empty Sequence with Implicit Boolean Comparison
pixee:python/fix-empty-sequence-comparison
📄️ Automatically Close Resources
pixee:python/fix-file-resource-leak
📄️ Use `math.isclose` Instead of Direct Equality for Floats
pixee:python/fix-float-equality
📄️ Use `callable` builtin to check for callables
pixee:python/fix-hasattr-call
📄️ Add `abs_tol` to `math.isclose` Call
pixee:python/fix-math-isclose
📄️ Add Missing Positional Parameter for Instance and Class Methods
pixee:python/fix-missing-self-or-cls
📄️ Replace Mutable Default Parameters
pixee:python/fix-mutable-params
📄️ Enable CSRF protection globally for a Flask app.
pixee:python/flask-enable-csrf-protection
📄️ Set content type to `application/json` for `flask.make_response` with JSON data
pixee:python/flask-json-response-type
📄️ Harden `pickle.load()` against deserialization attacks
pixee:python/harden-pickle-load
📄️ Replace unsafe `pyyaml` loader with `SafeLoader`
pixee:python/harden-pyyaml
📄️ Use `typ='safe'` in ruamel.yaml() Calls
pixee:python/harden-ruamel
📄️ Enforce HTTPS Connection for `urllib3`
pixee:python/https-connection
📄️ Verify JWT Decode
pixee:python/jwt-decode-verify
📄️ Convert Eager Logging to Lazy Logging
pixee:python/lazy-logging
📄️ Limit readline()
pixee:python/limit-readline
📄️ Replace `is` with `==` for literal or new object comparisons
pixee:python/literal-or-new-object-identity
📄️ Replace == comparison with numpy.isnan()
pixee:python/numpy-nan-equality
📄️ Moves assertions out of `pytest.raises` scope
pixee:python/remove-assertion-in-pytest-raises
📄️ Remove Calls to `builtin` `breakpoint` and `pdb.set_trace
pixee:python/remove-debug-breakpoint
📄️ Remove deprecated `__future__` imports
pixee:python/remove-future-imports
📄️ Remove `global` Usage at Module Level
pixee:python/remove-module-global
📄️ Remove Unnecessary F-strings
pixee:python/remove-unnecessary-f-str
📄️ Replace unsafe usage of `flask.send_file`
pixee:python/replace-flask-send-file
📄️ Verify SSL Certificates for Requests.
pixee:python/requests-verify
📄️ Use Safe Defaults for `lxml` Parsers
pixee:python/safe-lxml-parser-defaults
📄️ Use Safe Parsers in `lxml` Parsing Functions
pixee:python/safe-lxml-parsing
📄️ Sandbox Process Creation
pixee:python/sandbox-process-creation
📄️ Use Safe Parameters in `flask` Response `set_cookie` Call
pixee:python/secure-flask-cookie
📄️ Flip Insecure `Flask` Session Configurations
pixee:python/secure-flask-session-configuration
📄️ Secure Source of Randomness
pixee:python/secure-random
📄️ Upgrade and Secure Temp File Creation
pixee:python/secure-tempfile
📄️ Parameterize SQL Queries
pixee:python/sql-parameterization
📄️ Convert Implicit String Concat Inside Sequence into Individual Elements
pixee:python/str-concat-in-sequence-literals
📄️ Use `shell=False` in `subprocess` Function Calls
pixee:python/subprocess-shell-false
📄️ Upgrade SSLContext Minimum Version
pixee:python/upgrade-sslcontext-minimum-version
📄️ Upgrade TLS Version In SSLContext
pixee:python/upgrade-sslcontext-tls
📄️ Sandbox URL Creation
pixee:python/url-sandbox
📄️ Use `defusedxml` for Parsing XML
pixee:python/use-defusedxml
📄️ Use Generator Expressions Instead of List Comprehensions
pixee:python/use-generator
📄️ Use Set Literals Instead of Sets from Lists
pixee:python/use-set-literal
📄️ Use Assignment Expression (Walrus) In Conditional
pixee:python/use-walrus-if
📄️ Sonar: Removed break or continue statement out of loop
sonar:python/break-or-continue-out-of-loop-S1716
📄️ Sonar: Disable GraphQL Introspection to Prevent Sensitive Data Leakage
sonar:python/disable-graphql-introspection-S6786
📄️ Sonar: Set content type to `application/json` for `django.http.HttpResponse` with JSON data
sonar:python/django-json-response-type-S5131
📄️ Sonar: Ensure Django Model Classes Implement a `__str__` Method
sonar:python/django-model-without-dunder-str-S6554
📄️ Sonar: Ensure Django @receiver is the first decorator
sonar:python/django-receiver-on-top-S6552
📄️ Sonar: Enable Jinja2 Autoescape
sonar:python/enable-jinja2-autoescape-S5247
📄️ Sonar: Ensure bare exception statements are raised
sonar:python/exception-without-raise-S3984
📄️ Sonar: Fix `assert` on Non-Empty Tuple Literal
sonar:python/fix-assert-tuple-S5905
📄️ Sonar: Use `math.isclose` Instead of Direct Equality for Floats
sonar:python/fix-float-equality-S1244
📄️ Sonar: Add `abs_tol` to `math.isclose` Call
sonar:python/fix-math-isclose-S6727
📄️ Sonar: Add Missing Positional Parameter for Instance and Class Methods
sonar:python/fix-missing-self-or-cls-S5719
📄️ Sonar: Set content type to `application/json` for `flask.make_response` with JSON data
sonar:python/flask-json-response-type-S5131
📄️ Sonar: Verify JWT Decode
sonar:python/jwt-decode-verify-S5659
📄️ Sonar: Replace `is` with `==` for literal or new object comparisons
sonar:python/literal-or-new-object-identity-S5796
📄️ Sonar: Replace == comparison with numpy.isnan()
sonar:python/numpy-nan-equality-S6725
📄️ Sonar: Moves assertions out of `pytest.raises` scope
sonar:python/remove-assertion-in-pytest-raises-S5915
📄️ Sonar: Secure Source of Randomness
sonar:python/secure-random-S2245
📄️ Sonar: Upgrade and Secure Temp File Creation
sonar:python/secure-tempfile-S5445
📄️ Sonar: Parameterize SQL Queries
sonar:python/sql-parameterization-S3649
📄️ Sonar: Sandbox URL Creation
sonar:python/url-sandbox-S5144