[pre-commit.ci] pre-commit autoupdate

.pre-commit-config.yaml

@@ -13,7 +13,7 @@ repos:
   - id: reorder-python-imports
     args: [--application-directories, '.:src', --py38-plus]
 - repo: https://github.com/psf/black-pre-commit-mirror
-  rev: 25.12.0
+  rev: 26.1.0
   hooks:
   - id: black
     args: [--line-length=79, --target-version=py38]

bandit/__main__.py

@@ -12,6 +12,7 @@
 
 https://bandit.readthedocs.io/
 """
+
 from bandit.cli import main
 
 main.main()

bandit/blacklists/calls.py

@@ -339,6 +339,7 @@
 +------+---------------------+------------------------------------+-----------+
 
 """
+
 from bandit.blacklists import utils
 from bandit.core import issue
 

bandit/blacklists/imports.py

@@ -227,6 +227,7 @@
 +------+---------------------+------------------------------------+-----------+
 
 """
+
 from bandit.blacklists import utils
 from bandit.core import issue
 

bandit/cli/baseline.py

@@ -10,6 +10,7 @@
 # reports on any new findings.
 # #############################################################################
 """Bandit is a tool designed to find common security issues in Python code."""
+
 import argparse
 import contextlib
 import logging

bandit/cli/config_generator.py

@@ -2,6 +2,7 @@
 #
 # SPDX-License-Identifier: Apache-2.0
 """Bandit is a tool designed to find common security issues in Python code."""
+
 import argparse
 import importlib
 import logging

bandit/cli/main.py

@@ -3,6 +3,7 @@
 #
 # SPDX-License-Identifier: Apache-2.0
 """Bandit is a tool designed to find common security issues in Python code."""
+
 import argparse
 import fnmatch
 import logging
@@ -393,8 +394,7 @@ def main():
             blacklist_info.append(f"{b['id']}\t{b['name']}")
 
     plugin_list = "\n\t".join(sorted(set(plugin_info + blacklist_info)))
-    dedent_text = textwrap.dedent(
-        """
+    dedent_text = textwrap.dedent("""
     CUSTOM FORMATTING
     -----------------
 
@@ -421,8 +421,7 @@ def main():
 
     The following tests were discovered and loaded:
     -----------------------------------------------
-    """
-    )
+    """)
     parser.epilog = dedent_text + f"\t{plugin_list}"
 
     # setup work - parse arguments, and initialize BanditManager

bandit/core/utils.py

@@ -136,7 +136,7 @@ def get_module_qualname_from_path(path):
     :return: fully qualified module name
     """
 
-    (head, tail) = os.path.split(path)
+    head, tail = os.path.split(path)
     if head == "" or tail == "":
         raise InvalidModulePath(
             f'Invalid python file path: "{path}" Missing path or file name'
@@ -145,7 +145,7 @@ def get_module_qualname_from_path(path):
     qname = [os.path.splitext(tail)[0]]
     while head not in ["/", ".", ""]:
         if os.path.isfile(os.path.join(head, "__init__.py")):
-            (head, tail) = os.path.split(head)
+            head, tail = os.path.split(head)
             qname.insert(0, tail)
         else:
             break

bandit/formatters/csv.py

@@ -27,6 +27,7 @@
     New field `CWE` added to output
 
 """
+
 # Necessary for this formatter to work when imported on Python 2. Importing
 # the standard library's csv module conflicts with the name of this module.
 import csv

bandit/formatters/custom.py

@@ -25,6 +25,7 @@
     New field `CWE` added to output
 
 """
+
 import logging
 import os
 import re

bandit/formatters/html.py

@@ -146,6 +146,7 @@
     New field `CWE` added to output
 
 """
+
 import logging
 import sys
 from html import escape as html_escape

bandit/formatters/json.py

@@ -73,6 +73,7 @@
     New field `CWE` added to output
 
 """
+
 # Necessary so we can import the standard library json module while continuing
 # to name this file json.py. (Python 2 only)
 import datetime

bandit/formatters/sarif.py

@@ -125,6 +125,7 @@
 .. versionadded:: 1.7.8
 
 """  # noqa: E501
+
 import datetime
 import logging
 import pathlib
@@ -206,7 +207,7 @@ def add_skipped_file_notifications(skips, invocation):
         invocation.tool_configuration_notifications = []
 
     for skip in skips:
-        (file_name, reason) = skip
+        file_name, reason = skip
 
         notification = om.Notification(
             level="error",

bandit/formatters/screen.py

@@ -32,6 +32,7 @@
     New field `CWE` added to output
 
 """
+
 import datetime
 import logging
 import sys

bandit/formatters/text.py

@@ -32,6 +32,7 @@
     New field `CWE` added to output
 
 """
+
 import datetime
 import logging
 import sys

bandit/formatters/utils.py

@@ -2,6 +2,7 @@
 #
 # SPDX-License-Identifier: Apache-2.0
 """Utility functions for formatting plugins for Bandit."""
+
 import io
 
 

bandit/formatters/xml.py

@@ -33,6 +33,7 @@
     New field `CWE` added to output
 
 """
+
 import logging
 import sys
 from xml.etree import ElementTree as ET  # nosec: B405

bandit/formatters/yaml.py

@@ -59,6 +59,7 @@
     New field `CWE` added to output
 
 """
+
 # Necessary for this formatter to work when imported on Python 2. Importing
 # the standard library's yaml module conflicts with the name of this module.
 import datetime

bandit/plugins/app_debug.py

@@ -41,6 +41,7 @@
     CWE information added
 
 """  # noqa: E501
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/asserts.py

@@ -52,6 +52,7 @@
     CWE information added
 
 """
+
 import fnmatch
 
 import bandit

bandit/plugins/crypto_request_no_cert_validation.py

@@ -46,6 +46,7 @@
     Added check for httpx module
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/exec.py

@@ -34,6 +34,7 @@
     CWE information added
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/general_bad_file_permissions.py

@@ -53,6 +53,7 @@
     Added checks for S_IWGRP and S_IXOTH
 
 """  # noqa: E501
+
 import stat
 
 import bandit

bandit/plugins/general_bind_all_interfaces.py

@@ -35,6 +35,7 @@
     CWE information added
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/general_hardcoded_tmp.py

@@ -51,6 +51,7 @@
     CWE information added
 
 """  # noqa: E501
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/hashlib_insecure_functions.py

@@ -45,6 +45,7 @@
     Added check for the crypt module weak hashes
 
 """  # noqa: E501
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/huggingface_unsafe_download.py

@@ -59,6 +59,7 @@
 .. versionadded:: 1.8.6
 
 """
+
 import ast
 import string
 

bandit/plugins/injection_paramiko.py

@@ -40,6 +40,7 @@
     CWE information added
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/injection_sql.py

@@ -63,6 +63,7 @@
     Flag when str.replace is used in the string construction
 
 """  # noqa: E501
+
 import ast
 import re
 

bandit/plugins/injection_wildcard.py

@@ -99,6 +99,7 @@
     CWE information added
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/jinja2_templates.py

@@ -63,6 +63,7 @@
     CWE information added
 
 """
+
 import ast
 
 import bandit

bandit/plugins/logging_config_insecure_listen.py

@@ -38,6 +38,7 @@
 .. versionadded:: 1.7.5
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/mako_templates.py

@@ -42,6 +42,7 @@
     CWE information added
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/markupsafe_markup_xss.py

@@ -68,6 +68,7 @@
 .. versionadded:: 1.8.3
 
 """
+
 import ast
 
 import bandit

bandit/plugins/pytorch_load.py

@@ -42,6 +42,7 @@
 .. versionadded:: 1.7.10
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/request_without_timeout.py

@@ -47,6 +47,7 @@
     Added check for httpx module
 
 """  # noqa: E501
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/ssh_no_host_key_verification.py

@@ -35,6 +35,7 @@
     CWE information added
 
 """
+
 import ast
 
 import bandit

bandit/plugins/tarfile_unsafe_members.py

@@ -46,6 +46,7 @@
     Added check for filter parameter
 
 """
+
 import ast
 
 import bandit

bandit/plugins/trojansource.py

@@ -30,13 +30,13 @@
 .. versionadded:: 1.7.10
 
 """  # noqa: E501
+
 from tokenize import detect_encoding
 
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test
 
-
 BIDI_CHARACTERS = (
     "\u202a",
     "\u202b",

bandit/plugins/try_except_continue.py

@@ -74,6 +74,7 @@ class (or no type). To accommodate this, the test may be configured to ignore
     CWE information added
 
 """
+
 import ast
 
 import bandit

bandit/plugins/try_except_pass.py

@@ -72,6 +72,7 @@ class (or no type). To accommodate this, the test may be configured to ignore
     CWE information added
 
 """
+
 import ast
 
 import bandit

bandit/plugins/weak_cryptographic_key.py

@@ -39,6 +39,7 @@
     CWE information added
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

bandit/plugins/yaml_load.py

@@ -41,6 +41,7 @@
     CWE information added
 
 """
+
 import bandit
 from bandit.core import issue
 from bandit.core import test_properties as test

setup.py

@@ -5,7 +5,6 @@
 
 import setuptools
 
-
 data_files = []
 man_path = "doc/build/man/bandit.1"
 if os.path.isfile(man_path):