Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

SG-33057 App pre-commit configuration and CI #367

Merged
merged 4 commits into from
Feb 19, 2025

Merge remote-tracking branch 'origin/master' into ticket/SG-33057-upg…

ed12565
Select commit
Loading
Failed to load commit list.
Merged

SG-33057 App pre-commit configuration and CI #367

Merge remote-tracking branch 'origin/master' into ticket/SG-33057-upg…
ed12565
Select commit
Loading
Failed to load commit list.
ShotGrid Chorus / security/semgrep completed Feb 12, 2025 in 22s

1 issue(s) found

Summary of Issues

Type Count Severity
rules.python.lang.security.audit.ssl-wrap-socket-is-deprecated.ssl-wrap-socket-is-deprecated 1 MEDIUM

How do I clear all these issues?

If you suspect these issues are not actual issues, click “Clear All Issues” above. Click here for more details.

Details and Annotations

Details

semgrep version 1.102.0

Annotations

Check warning on line 4697 in shotgun_api3/shotgun.py

See this annotation in the file changed.

@shotgrid-chorus shotgrid-chorus / security/semgrep

app.chorus.semgrep.rules.python.lang.security.audit.ssl-wrap-socket-is-deprecated.ssl-wrap-socket-is-deprecated 

'ssl.wrap_socket()' is deprecated. This function creates an insecure socket without server name indication or hostname matching. Instead, create an SSL context using 'ssl.SSLContext()' and use that to wrap a socket.
View more details on ShotGrid Chorus