Feature Request: Whitelist lines ending in # nosec

So both [detect-secrets](https://github.com/Yelp/detect-secrets/blob/master/detect_secrets/plugins/high_entropy_strings.py#L41) and Bandit have the concept of whitelisting a line by putting a comment at the end, similar to how you've probably seen people do `# noqa: F401` or whatever, with pylint.

Let us steal once again, from Bandit, since they are most similar to us, [here are the relevant lines](https://github.com/openstack/bandit/blob/8f09d8b208f037b7d49ed6bc88f2ac200e7cc06c/bandit/core/manager.py#L270-L277), but we shall change `lineno + 1 for` to `enumerate(lines, start=1)` because it is more pythonic.

They also have the `--ignore-nosec        do not skip lines with # nosec comments` command line option` so we shall pass in the set of lines to the 2 calls to `find_vulnerabilities` [in \_\_main\_\_](https://github.com/python-security/pyt/blob/master/pyt/__main__.py#L53),

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Feature Request: Whitelist lines ending in # nosec #108

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Feature Request: Whitelist lines ending in # nosec #108

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions