Skip to content

Create a control flow graph to traverse code in possible execution order #1197

New issue
Jump to bottom
New issue
Jump to bottom
Open
Open
Create a control flow graph to traverse code in possible execution order#1197
Labels
enhancementNew feature or request
@ericwb

Description

@ericwb
ericwb
opened on Nov 5, 2024

Is your feature request related to a problem? Please describe.
Bandit could really benefit from a Control Flow Graph to do things like taint analysis and analysis based on possible execution order.

Describe the solution you'd like
There is an existing Python package staticfg that might be useful to generate the CFG. From the CFG bandit can traverse the generated graph instead of the AST.

Describe alternatives you've considered
Current behavior does analysis top-down in the file, which is almost never the execution of the program making things like taint analysis next to impossible.

Additional context
https://github.com/coetaur0/staticfg

Love this idea? Give it a 👍. We prioritize fulfilling features with the most 👍.

Metadata

Assignees

No one assigned

    Labels

    enhancementNew feature or request

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions