From ff5aee7158bd46e4ae22bc431adadd7060a6e277 Mon Sep 17 00:00:00 2001
From: Étienne Loks <etienne.loks@iggdrasil.net>
Date: Mon, 10 Apr 2023 18:31:58 +0200
Subject: Add bandit scan tool to Makefile - mark some security issue as non
 relevants

---
 archaeological_finds/views_api.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

(limited to 'archaeological_finds')

diff --git a/archaeological_finds/views_api.py b/archaeological_finds/views_api.py
index 4302fbd89..8bea74eb7 100644
--- a/archaeological_finds/views_api.py
+++ b/archaeological_finds/views_api.py
@@ -32,7 +32,8 @@ class PublicFindAPI(APIView):
         )
 
         ordering = "CASE {} END".format(clauses)
-        return models.Find.objects.filter(id__in=id_list).extra(
+        # nosec: extra clauses uses only find id from a FindBasket query no injection possible
+        return models.Find.objects.filter(id__in=id_list).extra(  # nosec
             select={"ordering": ordering}, order_by=("ordering",)
         )
 
-- 
cgit v1.2.3