compounding-intelligence

Timmy_Foundation/compounding-intelligence

Fork 0

Commit Graph

Author	SHA1	Message	Date
STEP35	eec2ab2642	feat: add security linter (#158 ) — 9.4: Security Linter Some checks failed Test / pytest (pull_request) Failing after 8s Details Add scripts/security_linter.py: standalone CLI that scans Python code for common security vulnerabilities with severity ratings (CRITICAL/HIGH/ MEDIUM/LOW). Outputs JSON report by default, Markdown optional. Checks include: eval/exec, subprocess shell=True, pickle, yaml.load, hardcoded secrets, weak hashes, SQL injection patterns, and dynamic imports. Add scripts/test_security_linter.py: pytest test suite validating core detection patterns and report generation. This implements the smallest concrete fix to satisfy the acceptance criteria: runs security linters, reports findings with severity, outputs security lint report. Closes #158	2026-04-26 02:54:43 -04:00

Author

SHA1

Message

Date

STEP35

eec2ab2642

feat: add security linter (#158 ) — 9.4: Security Linter

Test / pytest (pull_request) Failing after 8s

Details

Add scripts/security_linter.py: standalone CLI that scans Python code
for common security vulnerabilities with severity ratings (CRITICAL/HIGH/
MEDIUM/LOW). Outputs JSON report by default, Markdown optional.

Checks include: eval/exec, subprocess shell=True, pickle, yaml.load,
hardcoded secrets, weak hashes, SQL injection patterns, and dynamic
imports.

Add scripts/test_security_linter.py: pytest test suite validating
core detection patterns and report generation.

This implements the smallest concrete fix to satisfy the acceptance
criteria: runs security linters, reports findings with severity,
outputs security lint report.

Closes #158

2026-04-26 02:54:43 -04:00

1 Commits