Skip to content

Added checkstyle configuration generator as an option to config generator #36

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
Ngwerume wants to merge 1 commit into
base: main
Choose a base branch
from
+156 −30

Added checkstyle configuration generator file

d18958b
Select commit
Loading
Failed to load commit list.
Open

Added checkstyle configuration generator as an option to config generator #36

Added checkstyle configuration generator file
d18958b
Select commit
Loading
Failed to load commit list.
Codacy Production / Codacy Static Code Analysis required action Mar 28, 2025 in 0s

11 new security issues (0 max.).

Codacy Here is an overview of what got changed by this pull request:

Issues
======
- Added 14
           

Complexity increasing per file
==============================
- config_file_generator.py  3

See the complete overview on Codacy

Annotations

Check failure on line 6 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L6 

The Python documentation recommends using `defusedxml` instead of `xml` because the native Python `xml` library is vulnerable to XML External Entity (XXE) attacks.

Check warning on line 6 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L6 

Using xml.etree.ElementTree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace xml.etree.ElementTree with the equivalent defusedxml package, or make sure defusedxml.defuse_stdlib() is called.

Check warning on line 6 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L6 

Using xml.etree.ElementTree to parse untrusted XML data is known to be vulnerable to XML attacks. Replace xml.etree.ElementTree with the equivalent defusedxml package, or make sure defusedxml.defuse_stdlib() is called. (B405)

Check notice on line 6 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L6 

camelcase 'xml.etree.ElementTree' imported as acronym 'ET' (N817)

Check failure on line 7 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L7 

The Python documentation recommends using `defusedxml` instead of `xml` because the native Python `xml` library is vulnerable to XML External Entity (XXE) attacks.

Check warning on line 7 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L7 

Using minidom to parse untrusted XML data is known to be vulnerable to XML attacks. Replace minidom with the equivalent defusedxml package, or make sure defusedxml.defuse_stdlib() is called.

Check warning on line 7 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L7 

Using minidom to parse untrusted XML data is known to be vulnerable to XML attacks. Replace minidom with the equivalent defusedxml package, or make sure defusedxml.defuse_stdlib() is called. (B408)

Check warning on line 16 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L16 

Requests call without timeout

Check warning on line 16 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L16 

The application was found using the `requests` module without configuring a timeout value for connections.

Check notice on line 27 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L27 

Trailing whitespace

Check warning on line 126 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L126 

The application was found using the `xml.dom.minidom` package for processing XML. Python's default XML processors suffer from various XML parsing vulnerabilities and care must be taken when handling XML data.

Check warning on line 126 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L126 

Using xml.dom.minidom.parseString to parse untrusted XML data is known to be vulnerable to XML attacks. Replace xml.dom.minidom.parseString with its defusedxml equivalent function or make sure defusedxml.defuse_stdlib() is called

Check warning on line 126 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L126 

Using xml.dom.minidom.parseString to parse untrusted XML data is known to be vulnerable to XML attacks. Replace xml.dom.minidom.parseString with its defusedxml equivalent function or make sure defusedxml.defuse_stdlib() is called (B318)

Check notice on line 210 in config_file_generator.py

See this annotation in the file changed.

@codacy-production codacy-production / Codacy Static Code Analysis

config_file_generator.py#L210 

expected 2 blank lines after class or function definition, found 1 (E305)
View more details on Codacy Production