Language / Framework: Python
Categories: Security

Bandit is a tool designed to find common security issues in Python code.

Enable the Plugin

To enable Bandit analysis, add the following to your .codeclimate.yml configuration file:

    enabled: true

More information about the CLI is available in the README here: https://github.com/codeclimate/codeclimate

Configure the Plugin

The Bandit plugin supports the native .bandit and .bandit.yml config files. You can select the specific test plugins to run and override default Bandit configuration using this file. More information on the config file can be found in Bandit's documentation.