Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- [1m============================= test session starts ==============================[0m
- platform linux -- Python 3.5.3, pytest-3.0.7, py-1.4.33, pluggy-0.4.0
- rootdir: /home/mak/dev/coala-bears, inifile: setup.cfg
- plugins: xdist-1.16.0, timeout-1.2.0, mock-1.6.0, env-0.6.0, cov-2.4.0
- timeout: 35.0s method: signal
- collected 628 items
- tests/python/BanditBearTest.py ..F....
- =================================== FAILURES ===================================
- [31m[1m____________________ BanditBearTest.test_jinja2_templating _____________________[0m
- bear = <BanditBear linter object (wrapping 'bandit') at 0x7ff73c3cadd8>
- args = ('/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', ['import jinja2\n', 'from jinja2 imp..."/" )\n', "something = ''\n", '\n', 'Environment(loader=templateLoader, load=templateLoader, autoescape=True)\n', ...])
- kwargs = {}
- bear_output_generator = [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin='B701', affected_code=(<SourceRange object(start=<Source...escape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6828>]
- msg = ['Running bear BanditBear...', "Running 'bandit /home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py -f json -s B105,B106,B107,B404,B603,B606,B607'"]
- [1m @contextmanager[0m
- [1m def execute_bear(bear, *args, **kwargs):[0m
- [1m try:[0m
- [1m bear_output_generator = bear.execute(*args, **kwargs)[0m
- [1m assert bear_output_generator is not None, \[0m
- [1m 'Bear returned None on execution\n'[0m
- [1m> yield bear_output_generator[0m
- [31m[1m/usr/lib/python3.5/site-packages/coalib/testing/LocalBearTestHelper.py[0m:20:
- _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
- self = <tests.python.BanditBearTest.BanditBearTest testMethod=test_jinja2_templating>
- local_bear = <BanditBear linter object (wrapping 'bandit') at 0x7ff73c3cadd8>
- lines = ['import jinja2\n', 'from jinja2 import Environment\n', 'templateLoader = jinja2.FileSystemLoader( searchpath="/" )\n', "something = ''\n", '\n', 'Environment(loader=templateLoader, load=templateLoader, autoescape=True)\n', ...]
- results = [<Result object(id=0x7f503b767ba0428f8597dc23a550efff, origin='B701', affected_code=(<SourceRange object(start=<Source...escape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316a20>]
- filename = '/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py'
- check_order = False, force_linebreaks = True, create_tempfile = False
- tempfile_kwargs = {}, settings = {}
- [1m def check_results(self,[0m
- [1m local_bear,[0m
- [1m lines,[0m
- [1m results,[0m
- [1m filename=None,[0m
- [1m check_order=False,[0m
- [1m force_linebreaks=True,[0m
- [1m create_tempfile=True,[0m
- [1m tempfile_kwargs={},[0m
- [1m settings={}):[0m
- [1m """[0m
- [1m Asserts that a check of the given lines with the given local bear does[0m
- [1m yield exactly the given results.[0m
- [1m [0m
- [1m :param local_bear: The local bear to check with.[0m
- [1m :param lines: The lines to check. (List of strings)[0m
- [1m :param results: The expected list of results.[0m
- [1m :param filename: The filename, if it matters.[0m
- [1m :param force_linebreaks: Whether to append newlines at each line[0m
- [1m if needed. (Bears expect a \\n for every line)[0m
- [1m :param create_tempfile: Whether to save lines in tempfile if needed.[0m
- [1m :param tempfile_kwargs: Kwargs passed to tempfile.mkstemp().[0m
- [1m :param settings: A dictionary of keys and values (both strings)[0m
- [1m from which settings will be created that will[0m
- [1m be made available for the tested bear.[0m
- [1m """[0m
- [1m assert isinstance(self, unittest.TestCase)[0m
- [1m self.assertIsInstance(local_bear,[0m
- [1m LocalBear,[0m
- [1m msg='The given bear is not a local bear.')[0m
- [1m self.assertIsInstance(lines,[0m
- [1m (list, tuple),[0m
- [1m msg='The given lines are not a list.')[0m
- [1m self.assertIsInstance(results,[0m
- [1m list,[0m
- [1m msg='The given results are not a list.')[0m
- [1m [0m
- [1m with prepare_file(lines, filename,[0m
- [1m force_linebreaks=force_linebreaks,[0m
- [1m create_tempfile=create_tempfile,[0m
- [1m tempfile_kwargs=tempfile_kwargs) as (file, fname), \[0m
- [1m execute_bear(local_bear, fname, file,[0m
- [1m **settings) as bear_output:[0m
- [1m msg = ("The local bear '{}' doesn't yield the right results. Or "[0m
- [1m 'the order may be wrong.'[0m
- [1m .format(local_bear.__class__.__name__))[0m
- [1m if not check_order:[0m
- [1m> self.assertEqual(sorted(bear_output), sorted(results), msg=msg)[0m
- [31m[1m/usr/lib/python3.5/site-packages/coalib/testing/LocalBearTestHelper.py[0m:130:
- _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
- self = <tests.python.BanditBearTest.BanditBearTest testMethod=test_jinja2_templating>
- first = [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin='B701', affected_code=(<SourceRange object(start=<Source...escape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6828>]
- second = [<Result object(id=0x7f503b767ba0428f8597dc23a550efff, origin='B701', affected_code=(<SourceRange object(start=<Source...escape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316a20>]
- msg = "The local bear 'BanditBear' doesn't yield the right results. Or the order may be wrong."
- [1m def assertEqual(self, first, second, msg=None):[0m
- [1m """Fail if the two objects are unequal as determined by the '=='[0m
- [1m operator.[0m
- [1m """[0m
- [1m assertion_func = self._getAssertEqualityFunc(first, second)[0m
- [1m> assertion_func(first, second, msg=msg)[0m
- [31m[1m/usr/lib64/python3.5/unittest/case.py[0m:838:
- _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
- self = <tests.python.BanditBearTest.BanditBearTest testMethod=test_jinja2_templating>
- list1 = [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin='B701', affected_code=(<SourceRange object(start=<Source...escape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6828>]
- list2 = [<Result object(id=0x7f503b767ba0428f8597dc23a550efff, origin='B701', affected_code=(<SourceRange object(start=<Source...escape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316a20>]
- msg = "The local bear 'BanditBear' doesn't yield the right results. Or the order may be wrong."
- [1m def assertListEqual(self, list1, list2, msg=None):[0m
- [1m """A list-specific equality assertion.[0m
- [1m [0m
- [1m Args:[0m
- [1m list1: The first list to compare.[0m
- [1m list2: The second list to compare.[0m
- [1m msg: Optional message to use on failure instead of a list of[0m
- [1m differences.[0m
- [1m [0m
- [1m """[0m
- [1m> self.assertSequenceEqual(list1, list2, msg, seq_type=list)[0m
- [31m[1m/usr/lib64/python3.5/unittest/case.py[0m:1036:
- _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
- self = <tests.python.BanditBearTest.BanditBearTest testMethod=test_jinja2_templating>
- seq1 = [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin='B701', affected_code=(<SourceRange object(start=<Source...escape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6828>]
- seq2 = [<Result object(id=0x7f503b767ba0428f8597dc23a550efff, origin='B701', affected_code=(<SourceRange object(start=<Source...escape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316a20>]
- msg = "Lists differ: [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin=[2507 chars]828>] != [<Result object(id=0... ++ ^^^ ^\n : The local bear 'BanditBear' doesn't yield the right results. Or the order may be wrong."
- seq_type = <class 'list'>
- [1m def assertSequenceEqual(self, seq1, seq2, msg=None, seq_type=None):[0m
- [1m """An equality assertion for ordered sequences (like lists and tuples).[0m
- [1m [0m
- [1m For the purposes of this function, a valid ordered sequence type is one[0m
- [1m which can be indexed, has a length, and has an equality operator.[0m
- [1m [0m
- [1m Args:[0m
- [1m seq1: The first sequence to compare.[0m
- [1m seq2: The second sequence to compare.[0m
- [1m seq_type: The expected datatype of the sequences, or None if no[0m
- [1m datatype should be enforced.[0m
- [1m msg: Optional message to use on failure instead of a list of[0m
- [1m differences.[0m
- [1m """[0m
- [1m if seq_type is not None:[0m
- [1m seq_type_name = seq_type.__name__[0m
- [1m if not isinstance(seq1, seq_type):[0m
- [1m raise self.failureException('First sequence is not a %s: %s'[0m
- [1m % (seq_type_name, safe_repr(seq1)))[0m
- [1m if not isinstance(seq2, seq_type):[0m
- [1m raise self.failureException('Second sequence is not a %s: %s'[0m
- [1m % (seq_type_name, safe_repr(seq2)))[0m
- [1m else:[0m
- [1m seq_type_name = "sequence"[0m
- [1m [0m
- [1m differing = None[0m
- [1m try:[0m
- [1m len1 = len(seq1)[0m
- [1m except (TypeError, NotImplementedError):[0m
- [1m differing = 'First %s has no length. Non-sequence?' % ([0m
- [1m seq_type_name)[0m
- [1m [0m
- [1m if differing is None:[0m
- [1m try:[0m
- [1m len2 = len(seq2)[0m
- [1m except (TypeError, NotImplementedError):[0m
- [1m differing = 'Second %s has no length. Non-sequence?' % ([0m
- [1m seq_type_name)[0m
- [1m [0m
- [1m if differing is None:[0m
- [1m if seq1 == seq2:[0m
- [1m return[0m
- [1m [0m
- [1m differing = '%ss differ: %s != %s\n' % ([0m
- [1m (seq_type_name.capitalize(),) +[0m
- [1m _common_shorten_repr(seq1, seq2))[0m
- [1m [0m
- [1m for i in range(min(len1, len2)):[0m
- [1m try:[0m
- [1m item1 = seq1[i][0m
- [1m except (TypeError, IndexError, NotImplementedError):[0m
- [1m differing += ('\nUnable to index element %d of first %s\n' %[0m
- [1m (i, seq_type_name))[0m
- [1m break[0m
- [1m [0m
- [1m try:[0m
- [1m item2 = seq2[i][0m
- [1m except (TypeError, IndexError, NotImplementedError):[0m
- [1m differing += ('\nUnable to index element %d of second %s\n' %[0m
- [1m (i, seq_type_name))[0m
- [1m break[0m
- [1m [0m
- [1m if item1 != item2:[0m
- [1m differing += ('\nFirst differing element %d:\n%s\n%s\n' %[0m
- [1m ((i,) + _common_shorten_repr(item1, item2)))[0m
- [1m break[0m
- [1m else:[0m
- [1m if (len1 == len2 and seq_type is None and[0m
- [1m type(seq1) != type(seq2)):[0m
- [1m # The sequences are the same, but have differing types.[0m
- [1m return[0m
- [1m [0m
- [1m if len1 > len2:[0m
- [1m differing += ('\nFirst %s contains %d additional '[0m
- [1m 'elements.\n' % (seq_type_name, len1 - len2))[0m
- [1m try:[0m
- [1m differing += ('First extra element %d:\n%s\n' %[0m
- [1m (len2, safe_repr(seq1[len2])))[0m
- [1m except (TypeError, IndexError, NotImplementedError):[0m
- [1m differing += ('Unable to index element %d '[0m
- [1m 'of first %s\n' % (len2, seq_type_name))[0m
- [1m elif len1 < len2:[0m
- [1m differing += ('\nSecond %s contains %d additional '[0m
- [1m 'elements.\n' % (seq_type_name, len2 - len1))[0m
- [1m try:[0m
- [1m differing += ('First extra element %d:\n%s\n' %[0m
- [1m (len1, safe_repr(seq2[len1])))[0m
- [1m except (TypeError, IndexError, NotImplementedError):[0m
- [1m differing += ('Unable to index element %d '[0m
- [1m 'of second %s\n' % (len1, seq_type_name))[0m
- [1m standardMsg = differing[0m
- [1m diffMsg = '\n' + '\n'.join([0m
- [1m difflib.ndiff(pprint.pformat(seq1).splitlines(),[0m
- [1m pprint.pformat(seq2).splitlines()))[0m
- [1m [0m
- [1m standardMsg = self._truncateMessage(standardMsg, diffMsg)[0m
- [1m msg = self._formatMessage(msg, standardMsg)[0m
- [1m> self.fail(msg)[0m
- [31m[1m/usr/lib64/python3.5/unittest/case.py[0m:1018:
- _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
- self = <tests.python.BanditBearTest.BanditBearTest testMethod=test_jinja2_templating>
- msg = "Lists differ: [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin=[2507 chars]828>] != [<Result object(id=0... ++ ^^^ ^\n : The local bear 'BanditBear' doesn't yield the right results. Or the order may be wrong."
- [1m def fail(self, msg=None):[0m
- [1m """Fail immediately, with the given message."""[0m
- [1m> raise self.failureException(msg)[0m
- [31m[1mE AssertionError: Lists differ: [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin=[2507 chars]828>] != [<Result object(id=0x7f503b767ba0428f8597dc23a550efff, origin=[2506 chars]a20>][0m
- [31m[1mE [0m
- [31m[1mE First differing element 1:[0m
- [31m[1mE <Result object(id=0x64fa286a5b5e4d69b23c9c3d5bb78892, origin=[581 chars]6630>[0m
- [31m[1mE <Result object(id=0x988f59b3835842adaf592604c4b20b45, origin=[580 chars]67f0>[0m
- [31m[1mE [0m
- [31m[1mE - [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=9, column=None) at 0x7ff73c3f62b0>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=9, column=None) at 0x7ff73c3f6240>) at 0x7ff73c3f6390>,), severity=MAJOR, confidence=70, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Ensure autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6048>,[0m
- [31m[1mE + [<Result object(id=0x7f503b767ba0428f8597dc23a550efff, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=9, column=None) at 0x7ff7483161d0>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=9, column=None) at 0x7ff748316208>) at 0x7ff748316160>,), severity=MAJOR, confidence=70, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Ensure autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316128>,[0m
- [31m[1mE - <Result object(id=0x64fa286a5b5e4d69b23c9c3d5bb78892, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=10, column=None) at 0x7ff73c3f62e8>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=10, column=None) at 0x7ff73c3f6320>) at 0x7ff73c3f63c8>,), severity=MAJOR, confidence=90, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Use autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6630>,[0m
- [31m[1mE ? ^^^^ ^^^ --------------------- ^ ^^^ ^^ ^^^ ^^ ^^^ ^^ - ^^^ ^^[0m
- [31m[1mE [0m
- [31m[1mE + <Result object(id=0x988f59b3835842adaf592604c4b20b45, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=10, column=None) at 0x7ff7483160b8>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=10, column=None) at 0x7ff7483160f0>) at 0x7ff748316048>,), severity=MAJOR, confidence=90, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Use autoescape=True to mitigate XSS vulnerabilties.', aspect=NoneType) at 0x7ff7483167f0>,[0m
- [31m[1mE ? ^^^^^^^^^^^^^ ^^^^ ^^^^^^^^^^^^ ++ ^ ^^ ++ ^ ^^ ++ ^ ^^ ++ ^ ^^[0m
- [31m[1mE [0m
- [31m[1mE - <Result object(id=0x2e96a774263f4eee9bc254a442af3785, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=11, column=None) at 0x7ff73c3f65c0>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=13, column=None) at 0x7ff73c3f6518>) at 0x7ff73c3f6588>,), severity=MAJOR, confidence=90, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Use autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f65f8>,[0m
- [31m[1mE ? ^ ^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^ ^^^^ ^^ ^^^^ ^^ ^^^^ ^^^ ^^^^ ^^[0m
- [31m[1mE [0m
- [31m[1mE + <Result object(id=0x9f8e324d182a49d38848763b14c38a45, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=11, column=None) at 0x7ff748316860>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=13, column=None) at 0x7ff748316828>) at 0x7ff7483168d0>,), severity=MAJOR, confidence=90, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Use autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316908>,[0m
- [31m[1mE ? +++++ ^^^^^^^ +++++++ ^^^^^^^^^ ^ ^^^^ ^^ ^^^^ ^^ ^^^^ ^^^ ^^^^ ^^[0m
- [31m[1mE [0m
- [31m[1mE - <Result object(id=0xf277bd296f5841f3a8d4225f89d6fe05, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=15, column=None) at 0x7ff73c3f6898>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=16, column=None) at 0x7ff73c3f6438>) at 0x7ff73c3f6860>,), severity=MAJOR, confidence=90, message='By default, jinja2 sets autoescape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6828>][0m
- [31m[1mE ? ^^^^^^^ ^^ ---- ^^^^^^^^^ ^^^^^^^ ^^^^^ ^^^^ ^^ ^^^^^^^ ^^^^^ ^[0m
- [31m[1mE [0m
- [31m[1mE + <Result object(id=0x5763b9dde3dc476ea8041e6538eb69c8, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=15, column=None) at 0x7ff748316978>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=16, column=None) at 0x7ff748316940>) at 0x7ff7483169e8>,), severity=MAJOR, confidence=90, message='By default, jinja2 sets autoescape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316a20>][0m
- [31m[1mE ? ^^^^^ ^^^^^^^^^^^^^^^^^ ^^^^ ^^^ ++ ^^ + ++ ^^^ ^ ++ ^^^^^ ++ ^^^ ^[0m
- [31m[1mE : The local bear 'BanditBear' doesn't yield the right results. Or the order may be wrong.[0m
- [31m[1m/usr/lib64/python3.5/unittest/case.py[0m:683: AssertionError
- [33mDuring handling of the above exception, another exception occurred:[0m
- self = <tests.python.BanditBearTest.BanditBearTest testMethod=test_jinja2_templating>
- [1m def test_function(self):[0m
- [1m self.maxDiff = None[0m
- [1m bear = BanditBear(Section(''), Queue())[0m
- [1m self.check_results(bear, load_testfile(testfilename, True),[0m
- [1m expected_results, get_testfile_path(testfilename),[0m
- [1m> create_tempfile=False)[0m
- [31m[1mtests/python/BanditBearTest.py[0m:33:
- _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
- [31m[1m/usr/lib/python3.5/site-packages/coalib/testing/LocalBearTestHelper.py[0m:132: in check_results
- [1m self.assertEqual(bear_output, results, msg=msg)[0m
- [31m[1m/usr/lib64/python3.5/contextlib.py[0m:77: in __exit__
- [1m self.gen.throw(type, value, traceback)[0m
- _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _
- bear = <BanditBear linter object (wrapping 'bandit') at 0x7ff73c3cadd8>
- args = ('/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', ['import jinja2\n', 'from jinja2 imp..."/" )\n', "something = ''\n", '\n', 'Environment(loader=templateLoader, load=templateLoader, autoescape=True)\n', ...])
- kwargs = {}
- bear_output_generator = [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin='B701', affected_code=(<SourceRange object(start=<Source...escape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6828>]
- msg = ['Running bear BanditBear...', "Running 'bandit /home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py -f json -s B105,B106,B107,B404,B603,B606,B607'"]
- [1m @contextmanager[0m
- [1m def execute_bear(bear, *args, **kwargs):[0m
- [1m try:[0m
- [1m bear_output_generator = bear.execute(*args, **kwargs)[0m
- [1m assert bear_output_generator is not None, \[0m
- [1m 'Bear returned None on execution\n'[0m
- [1m yield bear_output_generator[0m
- [1m except Exception as err:[0m
- [1m msg = [][0m
- [1m while not bear.message_queue.empty():[0m
- [1m msg.append(bear.message_queue.get().message)[0m
- [1m> raise AssertionError(str(err) + ' \n' + '\n'.join(msg))[0m
- [31m[1mE AssertionError: Lists differ: [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin=[2507 chars]828>] != [<Result object(id=0x7f503b767ba0428f8597dc23a550efff, origin=[2506 chars]a20>][0m
- [31m[1mE [0m
- [31m[1mE First differing element 1:[0m
- [31m[1mE <Result object(id=0x64fa286a5b5e4d69b23c9c3d5bb78892, origin=[581 chars]6630>[0m
- [31m[1mE <Result object(id=0x988f59b3835842adaf592604c4b20b45, origin=[580 chars]67f0>[0m
- [31m[1mE [0m
- [31m[1mE - [<Result object(id=0xca7a8528629c4f83a4e1ad6c4627ca2a, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=9, column=None) at 0x7ff73c3f62b0>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=9, column=None) at 0x7ff73c3f6240>) at 0x7ff73c3f6390>,), severity=MAJOR, confidence=70, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Ensure autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6048>,[0m
- [31m[1mE + [<Result object(id=0x7f503b767ba0428f8597dc23a550efff, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=9, column=None) at 0x7ff7483161d0>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=9, column=None) at 0x7ff748316208>) at 0x7ff748316160>,), severity=MAJOR, confidence=70, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Ensure autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316128>,[0m
- [31m[1mE - <Result object(id=0x64fa286a5b5e4d69b23c9c3d5bb78892, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=10, column=None) at 0x7ff73c3f62e8>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=10, column=None) at 0x7ff73c3f6320>) at 0x7ff73c3f63c8>,), severity=MAJOR, confidence=90, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Use autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6630>,[0m
- [31m[1mE ? ^^^^ ^^^ --------------------- ^ ^^^ ^^ ^^^ ^^ ^^^ ^^ - ^^^ ^^[0m
- [31m[1mE [0m
- [31m[1mE + <Result object(id=0x988f59b3835842adaf592604c4b20b45, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=10, column=None) at 0x7ff7483160b8>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=10, column=None) at 0x7ff7483160f0>) at 0x7ff748316048>,), severity=MAJOR, confidence=90, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Use autoescape=True to mitigate XSS vulnerabilties.', aspect=NoneType) at 0x7ff7483167f0>,[0m
- [31m[1mE ? ^^^^^^^^^^^^^ ^^^^ ^^^^^^^^^^^^ ++ ^ ^^ ++ ^ ^^ ++ ^ ^^ ++ ^ ^^[0m
- [31m[1mE [0m
- [31m[1mE - <Result object(id=0x2e96a774263f4eee9bc254a442af3785, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=11, column=None) at 0x7ff73c3f65c0>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=13, column=None) at 0x7ff73c3f6518>) at 0x7ff73c3f6588>,), severity=MAJOR, confidence=90, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Use autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f65f8>,[0m
- [31m[1mE ? ^ ^^^^^^^^^^^^^^^^ ^^^^^^^^^^^^ ^^^^ ^^ ^^^^ ^^ ^^^^ ^^^ ^^^^ ^^[0m
- [31m[1mE [0m
- [31m[1mE + <Result object(id=0x9f8e324d182a49d38848763b14c38a45, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=11, column=None) at 0x7ff748316860>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=13, column=None) at 0x7ff748316828>) at 0x7ff7483168d0>,), severity=MAJOR, confidence=90, message='Using jinja2 templates with autoescape=False is dangerous and can lead to XSS. Use autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316908>,[0m
- [31m[1mE ? +++++ ^^^^^^^ +++++++ ^^^^^^^^^ ^ ^^^^ ^^ ^^^^ ^^ ^^^^ ^^^ ^^^^ ^^[0m
- [31m[1mE [0m
- [31m[1mE - <Result object(id=0xf277bd296f5841f3a8d4225f89d6fe05, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=15, column=None) at 0x7ff73c3f6898>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=16, column=None) at 0x7ff73c3f6438>) at 0x7ff73c3f6860>,), severity=MAJOR, confidence=90, message='By default, jinja2 sets autoescape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff73c3f6828>][0m
- [31m[1mE ? ^^^^^^^ ^^ ---- ^^^^^^^^^ ^^^^^^^ ^^^^^ ^^^^ ^^ ^^^^^^^ ^^^^^ ^[0m
- [31m[1mE [0m
- [31m[1mE + <Result object(id=0x5763b9dde3dc476ea8041e6538eb69c8, origin='B701', affected_code=(<SourceRange object(start=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=15, column=None) at 0x7ff748316978>, end=<SourcePosition object(file='/home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py', line=16, column=None) at 0x7ff748316940>) at 0x7ff7483169e8>,), severity=MAJOR, confidence=90, message='By default, jinja2 sets autoescape to False. Consider using autoescape=True to mitigate XSS vulnerabilities.', aspect=NoneType) at 0x7ff748316a20>][0m
- [31m[1mE ? ^^^^^ ^^^^^^^^^^^^^^^^^ ^^^^ ^^^ ++ ^^ + ++ ^^^ ^ ++ ^^^^^ ++ ^^^ ^[0m
- [31m[1mE : The local bear 'BanditBear' doesn't yield the right results. Or the order may be wrong. [0m
- [31m[1mE Running bear BanditBear...[0m
- [31m[1mE Running 'bandit /home/mak/dev/coala-bears/tests/python/bandit_test_files/jinja2_templating.py -f json -s B105,B106,B107,B404,B603,B606,B607'[0m
- [31m[1m/usr/lib/python3.5/site-packages/coalib/testing/LocalBearTestHelper.py[0m:25: AssertionError
- ============================ pytest-warning summary ============================
- WC1 /home/mak/dev/coala-bears/tests/natural_language/LanguageToolBearTest.py cannot collect test class 'SkipTest' because it has a __init__ constructor
- [1m============================= 621 tests deselected =============================[0m
- [31m[1m==== 1 failed, 6 passed, 621 deselected, 1 pytest-warnings in 27.61 seconds ====[0m
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement