Giters

krkn-chaos / krkn

Chaos and resiliency testing tool for Kubernetes with a focus on improving performance under failure conditions. A CNCF sandbox project.

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

[B104:hardcoded_bind_all_interfaces] Binding to all interfaces.

sandrobonazzola opened this issue · comments

commented

bandit reports:

>> Issue: [B104:hardcoded_bind_all_interfaces] Possible binding to all interfaces.
   Severity: Medium   Confidence: Medium
   CWE: CWE-605 (https://cwe.mitre.org/data/definitions/605.html)
   Location: run_kraken.py:89:19
   More Info: https://bandit.readthedocs.io/en/1.7.4/plugins/b104_hardcoded_bind_all_interfaces.html
88	            port = 8081
89	        address = ("0.0.0.0", port)
90

The listening address should be set in a configuration file and the server should bind only on the specified address.