ruff.toml: Disable S603 and S607

nathanchance · nathanchance · commit 533f03c2edb2 · 2023-04-20T08:57:15.000-07:00
Reading the bandit documentation, these warnings are low severity and it would make the code significantly worse to try and work around them, so opt out of them. These calls are working as intended and this script is designed to be used interactively so injection is not a concern. Link: https://bandit.readthedocs.io/en/latest/plugins/b603_subprocess_without_shell_equals_true.html Link: https://bandit.readthedocs.io/en/latest/plugins/b607_start_process_with_partial_path.html Signed-off-by: Nathan Chancellor <nathan@kernel.org>
diff --git a/ruff.toml b/ruff.toml
@@ -24,5 +24,7 @@ ignore = [
     'PLR0913', # too-many-arguments
     'PLR0915', # too-many-statements
     'PLR2004', # magic-value-comparison
+    'S603', # subprocess-without-shell-equals-true
+    'S607', # start-process-with-partial-path
 ]
 target-version = 'py38'

Original file line number	Diff line number	Diff line change
`@@ -24,5 +24,7 @@ ignore = [`
`24`	`24`	`'PLR0913', # too-many-arguments`
`25`	`25`	`'PLR0915', # too-many-statements`
`26`	`26`	`'PLR2004', # magic-value-comparison`
	`27`	`+ 'S603', # subprocess-without-shell-equals-true`
	`28`	`+ 'S607', # start-process-with-partial-path`
`27`	`29`	`]`
`28`	`30`	`target-version = 'py38'`