Add bandit scan tool to Makefile - mark some security issue as non relevants

author: Étienne Loks <etienne.loks@iggdrasil.net> 2023-04-10 18:31:58 +0200
committer: Étienne Loks <etienne.loks@iggdrasil.net> 2023-04-17 15:47:16 +0200
commit: ff5aee7158bd46e4ae22bc431adadd7060a6e277 (patch)
tree: 120f0fe58d2872aec800b7b794dc9dd5222a9e44 /archaeological_finds
parent: 71a256dc52ed3391638dcf9669cf57d75475d326 (diff)
download: Ishtar-ff5aee7158bd46e4ae22bc431adadd7060a6e277.tar.bz2
Ishtar-ff5aee7158bd46e4ae22bc431adadd7060a6e277.zip
1 files changed, 2 insertions, 1 deletions
diff --git a/archaeological_finds/views_api.py b/archaeological_finds/views_api.py
index 4302fbd89..8bea74eb7 100644
--- a/archaeological_finds/views_api.py
+++ b/archaeological_finds/views_api.py
@@ -32,7 +32,8 @@ class PublicFindAPI(APIView):
         )
 
         ordering = "CASE {} END".format(clauses)
-        return models.Find.objects.filter(id__in=id_list).extra(
+        # nosec: extra clauses uses only find id from a FindBasket query no injection possible
+        return models.Find.objects.filter(id__in=id_list).extra(  # nosec
             select={"ordering": ordering}, order_by=("ordering",)
         )
author	Étienne Loks <etienne.loks@iggdrasil.net>	2023-04-10 18:31:58 +0200
committer	Étienne Loks <etienne.loks@iggdrasil.net>	2023-04-17 15:47:16 +0200
commit	ff5aee7158bd46e4ae22bc431adadd7060a6e277 (patch)
tree	120f0fe58d2872aec800b7b794dc9dd5222a9e44 /archaeological_finds
parent	71a256dc52ed3391638dcf9669cf57d75475d326 (diff)
download	Ishtar-ff5aee7158bd46e4ae22bc431adadd7060a6e277.tar.bz2 Ishtar-ff5aee7158bd46e4ae22bc431adadd7060a6e277.zip