build: enable ruff rule sets F, PT, DJ, UP, and B #38291
144 new alerts including 36 high severity security vulnerabilities
New alerts in code changed by this pull request
Security Alerts:
- 36 high
- 108 medium
Alerts not introduced by this pull request might have been detected because the code changes were too large.
See annotations below for details.
Annotations
Check failure on line 952 in lms/djangoapps/discussion/rest_api/tests/utils.py
Code scanning / CodeQL
Use of a broken or weak cryptographic hashing algorithm on sensitive data High test
Check failure on line 1097 in lms/djangoapps/discussion/django_comment_client/utils.py
Code scanning / CodeQL
Polynomial regular expression used on uncontrolled data High
Check failure on line 1092 in lms/djangoapps/discussion/django_comment_client/utils.py
Code scanning / CodeQL
Polynomial regular expression used on uncontrolled data High
Check failure on line 1073 in lms/djangoapps/discussion/django_comment_client/utils.py
Code scanning / CodeQL
Polynomial regular expression used on uncontrolled data High
Check failure on line 1208 in lms/djangoapps/certificates/models.py
Code scanning / CodeQL
Uncontrolled data used in path expression High
Check failure on line 1207 in lms/djangoapps/certificates/models.py
Code scanning / CodeQL
Uncontrolled data used in path expression High
Check failure on line 71 in lms/djangoapps/certificates/admin.py
Code scanning / CodeQL
Incomplete URL substring sanitization High
Check failure on line 233 in lms/djangoapps/branding/api.py
Code scanning / CodeQL
Incomplete URL substring sanitization High
Code scanning / CodeQL
Clear-text logging of sensitive information High
Check failure on line 110 in common/djangoapps/student/tests/test_models.py
Code scanning / CodeQL
Use of a broken or weak cryptographic hashing algorithm on sensitive data High test
Check failure on line 99 in common/djangoapps/student/tests/test_models.py
Code scanning / CodeQL
Use of a broken or weak cryptographic hashing algorithm on sensitive data High test
Check failure on line 81 in common/djangoapps/student/tests/test_models.py
Code scanning / CodeQL
Use of a broken or weak cryptographic hashing algorithm on sensitive data High test
Check failure on line 1015 in common/djangoapps/student/models/course_enrollment.py
Code scanning / CodeQL
Use of a broken or weak cryptographic hashing algorithm on sensitive data High
Check warning on line 203 in openedx/core/djangoapps/embargo/api.py
Code scanning / CodeQL
Information exposure through an exception Medium
Check warning on line 1160 in lms/djangoapps/verify_student/views.py
Code scanning / CodeQL
Reflected server-side cross-site scripting Medium
Check warning on line 1093 in lms/djangoapps/verify_student/views.py
Code scanning / CodeQL
Reflected server-side cross-site scripting Medium
Check warning on line 1054 in lms/djangoapps/verify_student/views.py
Code scanning / CodeQL
Reflected server-side cross-site scripting Medium
Check warning on line 1050 in lms/djangoapps/verify_student/views.py
Code scanning / CodeQL
Reflected server-side cross-site scripting Medium
Check warning on line 244 in lms/djangoapps/support/views/enrollments.py
Code scanning / CodeQL
Information exposure through an exception Medium
Check warning on line 213 in lms/djangoapps/support/views/enrollments.py
Code scanning / CodeQL
Reflected server-side cross-site scripting Medium
Check warning on line 205 in lms/djangoapps/support/views/enrollments.py
Code scanning / CodeQL
Information exposure through an exception Medium
Check warning on line 172 in lms/djangoapps/support/views/enrollments.py
Code scanning / CodeQL
Reflected server-side cross-site scripting Medium
Check warning on line 162 in lms/djangoapps/support/views/enrollments.py
Code scanning / CodeQL
Reflected server-side cross-site scripting Medium
Check warning on line 156 in lms/djangoapps/support/views/enrollments.py
Code scanning / CodeQL
Reflected server-side cross-site scripting Medium
Check warning on line 149 in lms/djangoapps/support/views/enrollments.py
Code scanning / CodeQL
Information exposure through an exception Medium