Security Overview · matthewdeanmartin/so_pip · GitHub

Security

Report a vulnerability

docs/security.md

Security Considerations

Ha, ha, ha... ok, now seriously.

Read code before you run it
Do not run this as part of an automated build pipeline
Only run this interactively
This app won't run code from StackOverflow, you'll have to run that code.

Copying code from stackover flow ...

Consider using this plugin: https://github.com/paper-materials-crowd-sourced/materials/tree/master/web-extension

Scholars have studied code reuse from SO

Security Features

Runs safety on inferred package list
Put everything into setup.cfg and almost noting in setup.py.
TODO: Optionally wrap all code in def run(): and if name=main: run()
TODO: Support pinning to a known version

There aren’t any published security advisories