pixee / codemodder-python

Python implementation of the Codemodder framework

pixee/codemodder-python Issues

Rename all sonar codemods to remove -id from name
Closed 8 days ago
Deprecate CodemodRegistry _codemods_by_name and codemod names in general
Closed 9 days ago2
Codemod: use-defused-xml-parse Semgrep
Closed 8 days ago1
Codemod: deprecation mongo-client-bad-auth Semgrep
Updated 16 days ago
Codemod: sqlalchemy-sql-injection Semgrep
Updated 16 days ago
Codemod: insufficient-rsa-key-size Semgrep
Closed 6 days ago
Codemod: nan-injection Semgrep
Updated 16 days ago
Codemod: os-system-injection Semgrep
Updated 16 days ago
Codemod: csv-writer-injection Semgrep
Updated 16 days ago
Codemod: path-traversal-join Semgrep
Updated 17 days ago
Codemod: avoid-insecure-deserialization Semgrep
Closed 7 days ago
Codemod: subprocess-shell-true Semgrep
Closed 8 days ago
Codemod: django-secure-set-cookie Semgrep
Closed 7 days ago
Codemod: md5-used-as-password Semgrep
Closed 8 days ago2
Codemod: request-data-write Semgrep
Updated 17 days ago
Codemod: no-csrf-exempt decorator Semgrep
Updated 17 days ago
Codemod: unverified jwt decode Semgrep
Closed 8 days ago
Codemod: flask jinja2 autoescape Semgrep
Closed 14 days ago
Codemod: SSRF Semgrep
Updated 17 days ago2
Codemod: sql-injection Semgrep
Updated 7 days ago2
Bump `security` package dependency to 1.3.0
Closed 22 days ago
New codemod for "Boolean checks should not be inverted"
Updated a month ago
`use-walrus-if` codemod introduces precedence bug
Closed 6 days ago3
Investigate GitHub action to update `poetry.lock` file
Closed 22 days ago1
Resource leak prevention codemod shoudl remove unused variables
Closed a month ago
When adding dependencies, include type stubs
Closed a month ago
Add dependencies to projects that are using `poetry`
Closed a month ago2
Test issue integration
Closed a month ago
`--sarif` flag behavior differs from other tool flags when path doesn't exist
Closed a month ago1
BUG: SQL parameterization codemod fails to remediate Sonar finding
Closed a month ago2
Add integration test to validate that codemod urls are accessible
Closed 2 months ago
Investigate and write test cases for using `bs4` for XML transformation
Updated 2 months ago
Update XML parser to handle adding new and nested elements
Closed 2 months ago
Bug: SystemError with XML codemod on MacOS
Closed 2 months ago
Codemod for deprecated datetime.utcnow & datetime.utcfromtimestamp
Updated 2 months ago
`secure-tempfile` codemod should handle more complex cases for file open/write/close
Updated 2 months ago
`use-defusedxml` codemod should handle usage of `xmlrpc`
Updated 2 months ago
Generalize sonar rule urls
Closed 2 months ago
Refactor all SARIF-based Result classes into a single Location parameterized class
Closed 2 months ago
Bug: `secure-tempfile` uses `mkstemp` which is not drop-in replaceable for `mktemp`
Closed 2 months ago3
Suggestion: Add warning messages in LibcstTransformerPipeline
Closed 6 days ago2
Investigate flaky tests
Closed 3 months ago
`harden-pyyaml` codemod adds import that already exists
Closed 3 months ago1
Parser and transformation failures should also update unfixed findings
Closed 2 months ago2
Enforce integration tests and all necessary metadata for a new codemod
Closed 2 months ago
Populate fixed and unfixed finding metadata for Sonar codemods
Closed 2 months ago
AttributeError in lazy logging codemod
Closed 3 months ago
Sonar codemod(s) for CSRF protections
Updated 3 months ago
Assert logging in unit tests with pytest `caplog`
Closed 3 months ago
New find+fix and sonar codemod for `math.isclose` without `abs_tol` kwarg if comparing to `0`
Closed 3 months ago