From 12e14f61e91aafdf0767d3e8c2193174b9808652 Mon Sep 17 00:00:00 2001 From: Eric Brown Date: Sat, 20 Jan 2024 05:54:33 -0800 Subject: [PATCH] Prepend ./ for files specified as CLI args (#1094) The get_module_qualname_from_path() function called by the node visistor expects that all files are explicitly named with a "head" and "tail" which are path delimiters to denote where the file is within a python project. However, if someone uses the command line and simply asks bandit to scan dummy.py in the current working directory, it will be missing the explicit "./" prefix in order for get_module_qualname_from_path to run and determine the module fully qualified name from the path. So this fix simply prepends a dot and delimiter to explicitly denote a file in the current working directory as given from the CLI. Fixes #907 Signed-off-by: Eric Brown --- bandit/core/manager.py | 2 ++ tests/unit/core/test_manager.py | 4 ++-- 2 files changed, 4 insertions(+), 2 deletions(-) diff --git a/bandit/core/manager.py b/bandit/core/manager.py index 57e0e8570..ffc13ca99 100644 --- a/bandit/core/manager.py +++ b/bandit/core/manager.py @@ -249,6 +249,8 @@ def discover_files(self, targets, recursive=False, excluded_paths=""): excluded_path_globs, enforce_glob=False, ): + if fname != "-": + fname = os.path.join(".", fname) files_list.add(fname) else: excluded_files.add(fname) diff --git a/tests/unit/core/test_manager.py b/tests/unit/core/test_manager.py index df815f588..5d20c56f8 100644 --- a/tests/unit/core/test_manager.py +++ b/tests/unit/core/test_manager.py @@ -289,7 +289,7 @@ def test_discover_files_exclude_glob(self, isdir): self.manager.discover_files( ["a.py", "test_a.py", "test.py"], True, excluded_paths="test_*.py" ) - self.assertEqual(["a.py", "test.py"], self.manager.files_list) + self.assertEqual(["./a.py", "./test.py"], self.manager.files_list) self.assertEqual(["test_a.py"], self.manager.excluded_files) @mock.patch("os.path.isdir") @@ -298,7 +298,7 @@ def test_discover_files_include(self, isdir): with mock.patch.object(manager, "_is_file_included") as m: m.return_value = True self.manager.discover_files(["thing"], True) - self.assertEqual(["thing"], self.manager.files_list) + self.assertEqual(["./thing"], self.manager.files_list) self.assertEqual([], self.manager.excluded_files) def test_run_tests_keyboardinterrupt(self):