python-security-scanner
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
ChinesePython Security Scanner
Python安全扫描器
Purpose and Intent
用途与目标
Detect common Python vulnerabilities such as SQL injection, unsafe deserialization, and hardcoded secrets. Use as part of a secure SDLC for Python projects.
检测常见的Python漏洞,如SQL注入、不安全的反序列化和硬编码密钥。可作为Python项目安全软件开发生命周期(SDLC)的一部分使用。
When to Use
使用场景
- Project Setup: When initializing a new Python project.
- Continuous Integration: As part of automated build and test pipelines.
- Legacy Refactoring: When updating older Python codebases to modern standards.
- 项目初始化:启动新Python项目时。
- 持续集成:作为自动化构建和测试流水线的一部分。
- 遗留代码重构:将旧版Python代码库更新至现代标准时。
When NOT to Use
不适用场景
- Non-Python Projects: This tool is specialized for the Python ecosystem.
- 非Python项目:本工具专为Python生态系统设计。
Error Conditions and Edge Cases
错误情况与边缘案例
- Missing Requirements: If the project lacks a requirements.txt or pyproject.toml.
- Incompatible Versions: If the project uses a Python version not supported by the tools.
- 缺失依赖配置:如果项目缺少requirements.txt或pyproject.toml文件。
- 版本不兼容:如果项目使用的Python版本不受工具支持。
Security and Data-Handling Considerations
安全与数据处理注意事项
- All analysis is performed locally.
- No source code or credentials are ever transmitted externally.
- 所有分析均在本地执行。
- 源代码或凭据绝不会传输至外部。