scanner-cli icon indicating copy to clipboard operation
scanner-cli copied to clipboard
verified publisher icon hawkeyesec

python-bandit can't cope with many exclusions

Open z0u opened this issue 6 years ago • 0 comments

Description

python-bandit is passed a list of all files to exclude. In my case that causes that module to fail with:

[error] python-bandit returned an error! spawn E2BIG

Which apparently means the argument list for the subprocess is too long.

Steps to Reproduce

  1. Create a directory .venv with ~6400 Python files in it*.
  2. Run hawkeye scan --exclude .venv

* This can happen if e.g. your virtual environment directory or build directory are in the project directory.

Expected behavior: python-bandit should run.

Actual behavior: python-bandit fails with the error [error] python-bandit returned an error! spawn E2BIG

Version

Hawkeye v1.7.1 Python-bandit 1.6.2

Additional Information

Issue seems to be how the command is constructed on python-bandit/index.js:28.

z0u avatar Dec 09 '19 00:12 z0u