claw/flaskpaste
1
0
Fork 1
forked from username/flaskpaste
Code Pull Requests Activity

fix: suppress S608 for both ruff and bandit

Browse Source
This commit is contained in:
Username
2025-12-23 22:57:38 +01:00
parent 2a287c65f4
commit 51af8fd2f8
1 changed files with 5 additions and 7 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
app/audit.py
View File

@@ -143,21 +143,19 @@ def query_audit_log(
# Get total count
count_row = db.execute(
f"SELECT COUNT(*) as total FROM audit_log WHERE {where_sql}", # nosec B608
f"SELECT COUNT(*) as total FROM audit_log WHERE {where_sql}", # noqa: S608 # nosec B608
params,
).fetchone()
total = count_row["total"] if count_row else 0
# Fetch entries
rows: list[Row] = db.execute(
f"""SELECT id, timestamp, event_type, client_id, client_ip,
# Fetch entries (where_sql built from trusted column names only)
query = f"""SELECT id, timestamp, event_type, client_id, client_ip,
paste_id, request_id, outcome, details
FROM audit_log
WHERE {where_sql}
ORDER BY timestamp DESC
LIMIT ? OFFSET ?""", # nosec B608
[*params, limit, offset],
).fetchall()
LIMIT ? OFFSET ?""" # noqa: S608 # nosec B608
rows: list[Row] = db.execute(query, [*params, limit, offset]).fetchall()
entries = []
for row in rows: