pylint-secure-coding-standard v1.5.1

Fixed

• Configuration options retrieval on Pylint 3
• GitHub workflows

Repository

• Update adrienverge/yamllint hook to v1.33.0
• Update astral-sh/ruff-pre-commit hook to v0.1.8

pylint-secure-coding-standard v1.5.0

Changed

• Changed minimum Python version to 3.8.X
• Requires Pylint 3.0

Fixed

• Compatibility with Pylint 3.0

Repository

• Replace most Python pre-commit hooks with ruff
• Update release drafting GitHub workflow
• Modify pull requests workflow to automatically update CHANGELOG file if it was created by pre-commit.ci
• Added some more pre-commit hooks:
  • doc8
  • codespell
  • yamllint
  • blacken-docs
• Update thomaseizinger/create-pull-request GitHub Action to v1.3.1
• Update astral-sh/ruff-pre-commit to v0.1.5
• Update asottile/blacken-docs hook to v1.16.0
• Update codespell-project/codespell hook to v2.2.6
• Update Lucas-C/pre-commit-hooks hook to v1.5.4
• Update pre-commit/pre-commit-hooks hook to v4.5.0
• Update psf/black hook to v23.11.0
• Update yamllint hook to v1.33.0
• Update GitHub Action stefanzweifel/git-auto-commit-action to v5

pylint-secure-coding-standard v1.4.1

Fixed

• Fixed uses of of pylint.testutils.MessageTest instead of pylint.testutils.Message for Pylint >= 2.12
• Fixed failing tests due to missing ignore_position argument to assertAddsMessages()

Repository

• Update black hook to v22.3.0
• Update check-manifest hook to v0.48
• Update isort hook to v5.10.1
• Update flake8 hook to v4.0.1
• Update pre-commit/pre-commit-hooks to v4.2.0
• Update Lucas-C/pre-commit-hooks hook to v1.1.13
• Update dangoslen/changelog-enforcer GitHub action to v3
• Update thomaseizinger/create-pull-request GitHub action to v1.2.2
• Update thomaseizinger/keep-a-changelog-new-release GitHub action to v1.3.0
• Update GitHub's CodeQL action to v2
• Update parse-changelog version to v0.4.7
• Fixed issue with release publishing GitHub workflow

pylint-secure-coding-standard v1.4.0

Added

• Added W8016 to warn when using os.mkdir and os.makedir with unsafe permissions (UNIX-only)
• Added W8017 to warn when using os.mkfifo with unsafe permissions (UNIX-only)
• Added W8018 to warn when using os.mknod with unsafe permissions (UNIX-only)
• Added W8019 to warn when using os.chmod with unsafe permissions (all except Windows)

Updated

• Refactor configuration option parsing for mode-like options

Fixed

• Critical typo for msgs attribute of the plugin class. This effectively rendered any previous version useless as
  pylint would not recognize the warning/error messages

Repository

• Restrict running some GitHub actions when a pull request is merged

pylint-secure-coding-standard v1.3.1

Updated

• Update unit tests for os.open()

Fixed

• Fix issue when processing keyword arguments for os.open()

Repository

• Restrict running some GitHub actions only when pull requests are updated

pylint-secure-coding-standard v1.3.0

Added

• Add plugin option to control whether we favour os.open over the builtin open
• Added W8012 to warn when using os.open with unsafe permissions
• Added E8013 to avoid using pickle.load and pickle.loads
• Added E8014 to avoid using marshal.load and marshal.loads
• Added E8015 to avoid using shelve.open

Fixed

• Fixed a few test function names

Repository

• Update pre-commit hooks
• Update thomaseizinger/create-pull-request GiHub action

pylint-secure-coding-standard v1.2.1

• Reworded E8003 and extend it to include a few more cases:
  • subprocess.getoutput()
  • subprocess.getstatusoutput()
  • asyncio.create_subprocess_shell()
  • loop.subprocess_shell()

pylint-secure-coding-standard v1.2.0

Added

• Added E8010 to avoid using os.popen() as it internally uses subprocess.Popen with shell=True
• Added E8011 to avoid using shlex.quote() on non-POSIX platforms.

pylint-secure-coding-standard v1.1.0

Added

• Added R8009 to prefer os.open() to the builtin open when in writing mode

Repository

• Update pre-commit configuration

pylint-secure-coding-standard v1.0.0

Initial release