profile
viewpoint
Anthony Shaw tonybaloney NTT Sydney, Australia https://tonybaloney.github.io/ SVP of Talent at NTT, Python Software Foundation Fellow.

sphinx-contrib/confluencebuilder 155

Confluence Markup Builder Plugin for Sphinx

tonybaloney/azure-pipelines-python-examples 27

Example configurations for Azure Build Pipelines for Python

pytest-dev/pytest-nunit 6

An Nunit output plugin for Pytest

DimensionDataResearch/glider-gun 3

Templated deployment prototype using Docker, Terraform, and Ansible (http://dimensiondataresearch.github.io/glider-gun/)

tonybaloney/Cloud-auto-scaling 3

Provides auto-scaling capabilities to a group of Virtual Servers via SNMP, currently works with Abiquo

tonybaloney/Abiquo-Backup 1

Backup Virtual Machines in an Abiquo Cloud

tonybaloney/awesome-django 1

A curated list of awesome things related to Django

tonybaloney/cisco-spark-async-bot 1

A Python Asynchronous Bot for Cisco Spark API

delete branch tonybaloney/requests-staticmock

delete branch : pyup-update-sphinx-1.7.5-to-3.1.1

delete time in 12 hours

push eventtonybaloney/requests-staticmock

pyup-bot

commit sha 6f0bda17eb124c83641ca90007d239a843b64f07

Update sphinx from 1.7.5 to 3.1.2

view details

push time in 12 hours

delete branch tonybaloney/requests-staticmock

delete branch : pyup-update-coverage-4.4.2-to-5.1

delete time in 12 hours

push eventtonybaloney/requests-staticmock

pyup-bot

commit sha 873a1e660526257b1043206b7454d938b5e684d0

Update coverage from 4.4.2 to 5.2

view details

push time in 12 hours

created tagtonybaloney/pycharm-security

tag1.20.1

Finds security holes in your Python projects from PyCharm and GitHub

created time in 6 days

issue closedtonybaloney/pycharm-security

Update insecure.json regularly

It looks like safety-db updates their database once a month. https://github.com/pyupio/safety-db/commits/master/data/insecure.json

Is it possible for this project to follow the same cadence? There were some false warnings that was fixed after Apr 14th release.

PS. LMK I should create a PR to update the DB.

closed time in 6 days

charleswhchan

push eventtonybaloney/pycharm-security

Anthony Shaw

commit sha d420a813d55de0c512896085607c166e682688c4

Update release notes

view details

push time in 6 days

delete branch tonybaloney/pycharm-security

delete branch : pyup_july

delete time in 6 days

push eventtonybaloney/pycharm-security

Anthony Shaw

commit sha ed5d79a8a4715d67c72596de962c02cc633ccae8

Patch July version of SafetyDb (#138)

view details

push time in 6 days

delete branch tonybaloney/pycharm-security

delete branch : handle_faults

delete time in 6 days

push eventtonybaloney/pycharm-security

Anthony Shaw

commit sha 1d52641d42eb7071c65898011d1dfe7c831fc601

More null protections to package scanner. (#137)

view details

push time in 6 days

issue closedtonybaloney/pycharm-security

NullPointerException

Describe the bug I just started my IDE with my proprietary project open.

To Reproduce see above

Additional context

  • Plugin Version 1.20.0
  • PyCharm Version (or IDE version) IntelliJ Ultimate 2020.1.2
  • Python Version 2.7
kotlin.KotlinNullPointerException
	at security.packaging.PyPackageSecurityScan$inspectLocalPackages$1.invokeSuspend(PyPackageSecurityScan.kt:70)
	at kotlin.coroutines.jvm.internal.BaseContinuationImpl.resumeWith(ContinuationImpl.kt:33)
	at kotlinx.coroutines.DispatchedTask.run(DispatchedTask.kt:56)
	at kotlinx.coroutines.EventLoopImplBase.processNextEvent(EventLoop.common.kt:272)
	at kotlinx.coroutines.BlockingCoroutine.joinBlocking(Builders.kt:79)
	at kotlinx.coroutines.BuildersKt__BuildersKt.runBlocking(Builders.kt:54)
	at kotlinx.coroutines.BuildersKt.runBlocking(Unknown Source)
	at kotlinx.coroutines.BuildersKt__BuildersKt.runBlocking$default(Builders.kt:36)
	at kotlinx.coroutines.BuildersKt.runBlocking$default(Unknown Source)
	at security.packaging.PyPackageSecurityScan.inspectLocalPackages(PyPackageSecurityScan.kt:69)
	at security.packaging.PyPackageSecurityScan.checkPackagesInSdks(PyPackageSecurityScan.kt:47)
	at security.packaging.PyPackageSecurityScan.checkPackages(PyPackageSecurityScan.kt:30)
	at security.packaging.PythonPackageVulnerabilityStartupTask$runActivity$1.run(PythonPackageVulnerabilityStartupTask.kt:16)
	at com.intellij.openapi.progress.impl.CoreProgressManager$TaskRunnable.run(CoreProgressManager.java:932)
	at com.intellij.openapi.progress.impl.CoreProgressManager.lambda$runProcessWithProgressAsync$5(CoreProgressManager.java:434)
	at com.intellij.openapi.progress.impl.ProgressRunner.lambda$null$3(ProgressRunner.java:233)
	at com.intellij.openapi.progress.impl.CoreProgressManager.lambda$runProcess$2(CoreProgressManager.java:166)
	at com.intellij.openapi.progress.impl.CoreProgressManager.registerIndicatorAndRun(CoreProgressManager.java:627)
	at com.intellij.openapi.progress.impl.CoreProgressManager.executeProcessUnderProgress(CoreProgressManager.java:572)
	at com.intellij.openapi.progress.impl.ProgressManagerImpl.executeProcessUnderProgress(ProgressManagerImpl.java:61)
	at com.intellij.openapi.progress.impl.CoreProgressManager.runProcess(CoreProgressManager.java:153)
	at com.intellij.openapi.progress.impl.ProgressRunner.lambda$submit$4(ProgressRunner.java:233)
	at java.base/java.util.concurrent.CompletableFuture$AsyncSupply.run(CompletableFuture.java:1700)
	at java.base/java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1128)
	at java.base/java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
	at java.base/java.lang.Thread.run(Thread.java:834)

closed time in 6 days

jugmac00

create barnchtonybaloney/pycharm-security

branch : pyup_july

created branch time in 6 days

create barnchtonybaloney/pycharm-security

branch : handle_faults

created branch time in 6 days

delete branch tonybaloney/pycharm-security

delete branch : dependabot/gradle/net.bytebuddy-byte-buddy-agent-1.10.13

delete time in 6 days

push eventtonybaloney/pycharm-security

dependabot-preview[bot]

commit sha 6d42c5fd4cb610fe0c0a55f5157709f760a60954

Bump byte-buddy-agent from 1.10.10 to 1.10.13 (#136) Bumps [byte-buddy-agent](https://github.com/raphw/byte-buddy) from 1.10.10 to 1.10.13. - [Release notes](https://github.com/raphw/byte-buddy/releases) - [Changelog](https://github.com/raphw/byte-buddy/blob/master/release-notes.md) - [Commits](https://github.com/raphw/byte-buddy/compare/byte-buddy-1.10.10...byte-buddy-1.10.13) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com> Co-authored-by: Anthony Shaw <anthony.p.shaw@gmail.com>

view details

push time in 6 days

PR merged tonybaloney/pycharm-security

Bump byte-buddy-agent from 1.10.10 to 1.10.13 dependencies

⚠️ Dependabot is rebasing this PR ⚠️

If you make any changes to it yourself then they will take precedence over the rebase.


Bumps byte-buddy-agent from 1.10.10 to 1.10.13. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/raphw/byte-buddy/releases">byte-buddy-agent's releases</a>.</em></p> <blockquote> <h2>Byte Buddy 1.10.13</h2> <ul> <li>Add possibility to filter class loaders before attempting to load a class using the <code>AgentBuilder</code>'s resubmission feature.</li> <li>Add <code>nameOf</code> matcher for more efficient string matching based on a hash set.</li> </ul> <h2>Byte Buddy 1.10.12</h2> <ul> <li>Experimental support for Java 16.</li> <li>Support all constant pool constant types in all APIs.</li> <li>Adjust methods for bootstrap arguments to allow types of <em>constantdynamic</em> constants.</li> <li>Correctly resolve handle type for method handles on private constructors.</li> <li>Fix stack size computation for minimal methods in <code>Advice</code>.</li> </ul> <h2>Byte Buddy 1.10.11</h2> <ul> <li>Emit full frame after super or auxiliary constructor call in constructors if no full frame was already issued within this constructor.</li> <li>Support methods that start with a stack map frame before any code.</li> <li>Pop array after <code>@AllArguments</code> parameter.</li> <li>Fix source inclusion for ASM commons.</li> <li>Avoid resolution of detached types when replacing target types in generic arrays on members of instrumented types.</li> <li>Fix validation of member substitution.</li> <li>Include post processor for <code>Advice</code>.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/raphw/byte-buddy/blob/master/release-notes.md">byte-buddy-agent's changelog</a>.</em></p> <blockquote> <h3>27. June 2020: version 1.10.13</h3> <ul> <li>Add possibility to filter class loaders before attempting to load a class using the <code>AgentBuilder</code>'s resubmission feature.</li> <li>Add <code>nameOf</code> matcher for more efficient string matching based on a hash set.</li> </ul> <h3>18. June 2020: version 1.10.12</h3> <ul> <li>Experimental support for Java 16.</li> <li>Support all constant pool constant types in all APIs.</li> <li>Adjust methods for bootstrap arguments to allow types of <em>constantdynamic</em> constants.</li> <li>Correctly resolve handle type for method handles on private constructors.</li> <li>Fix stack size computation for minimal methods in <code>Advice</code>.</li> </ul> <h3>4. June 2020: version 1.10.11</h3> <ul> <li>Emit full frame after super or auxiliary constructor call in constructors if no full frame was already issued within this constructor.</li> <li>Support methods that start with a stack map frame before any code.</li> <li>Pop array after <code>@AllArguments</code> parameter.</li> <li>Fix source inclusion for ASM commons.</li> <li>Avoid resolution of detached types when replacing target types in generic arrays on members of instrumented types.</li> <li>Fix validation of member substitution.</li> <li>Include post processor for <code>Advice</code>.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/raphw/byte-buddy/commit/68dc99ca6f2b812bcb9a8b90cfdafc17a2637ff5"><code>68dc99c</code></a> [maven-release-plugin] prepare release byte-buddy-1.10.13</li> <li><a href="https://github.com/raphw/byte-buddy/commit/4400dca3ed6116ed2c36e3a3edfa0ca1d794f8fb"><code>4400dca</code></a> [release] release new version</li> <li><a href="https://github.com/raphw/byte-buddy/commit/16792968a8b85929de1143b37f709f71ca0a3d63"><code>1679296</code></a> Add possibility to filter on class loader upon resubmission.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/2090772340c0c537e42d08a100ef1ec92ab84c7a"><code>2090772</code></a> Remove diamond operator.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/ad4749c1d42deba944b46b0a25a0f1113b3f64f5"><code>ad4749c</code></a> Improve toString method.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/25a7c3e13750f52ef8a6ace22a57c5aa781f77cf"><code>25a7c3e</code></a> Clean up.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/a750327fe6f5097f3b23396ce3d61e692dbee08b"><code>a750327</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/raphw/byte-buddy/issues/887">#887</a> from richardstartin/namedoneof</li> <li><a href="https://github.com/raphw/byte-buddy/commit/a2f79d1e5d146ad47417dca5994a7a74fb1c0e03"><code>a2f79d1</code></a> implement namedOneOf matcher for NamedElements</li> <li><a href="https://github.com/raphw/byte-buddy/commit/8d6a46e5863d470d71112651a0c6511ad92ace9e"><code>8d6a46e</code></a> Add release notes.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/703473c8e85374a03850a8e327562fb28c23e8b3"><code>703473c</code></a> [maven-release-plugin] prepare for next development iteration</li> <li>Additional commits viewable in <a href="https://github.com/raphw/byte-buddy/compare/byte-buddy-1.10.10...byte-buddy-1.10.13">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 6 days

push eventtonybaloney/pycharm-security

dependabot-preview[bot]

commit sha 3d613b817ea723e7aedad58a5e8c5b34cf0f72d6

Bump byte-buddy from 1.10.10 to 1.10.13 (#135) Bumps [byte-buddy](https://github.com/raphw/byte-buddy) from 1.10.10 to 1.10.13. - [Release notes](https://github.com/raphw/byte-buddy/releases) - [Changelog](https://github.com/raphw/byte-buddy/blob/master/release-notes.md) - [Commits](https://github.com/raphw/byte-buddy/compare/byte-buddy-1.10.10...byte-buddy-1.10.13) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>

view details

Anthony Shaw

commit sha 175cf4dc474cee105ec9f00e5193389954942c50

Merge branch 'master' into dependabot/gradle/net.bytebuddy-byte-buddy-agent-1.10.13

view details

push time in 6 days

push eventtonybaloney/pycharm-security

dependabot-preview[bot]

commit sha 3d613b817ea723e7aedad58a5e8c5b34cf0f72d6

Bump byte-buddy from 1.10.10 to 1.10.13 (#135) Bumps [byte-buddy](https://github.com/raphw/byte-buddy) from 1.10.10 to 1.10.13. - [Release notes](https://github.com/raphw/byte-buddy/releases) - [Changelog](https://github.com/raphw/byte-buddy/blob/master/release-notes.md) - [Commits](https://github.com/raphw/byte-buddy/compare/byte-buddy-1.10.10...byte-buddy-1.10.13) Signed-off-by: dependabot-preview[bot] <support@dependabot.com> Co-authored-by: dependabot-preview[bot] <27856297+dependabot-preview[bot]@users.noreply.github.com>

view details

push time in 6 days

PR merged tonybaloney/pycharm-security

Bump byte-buddy from 1.10.10 to 1.10.13 dependencies

Bumps byte-buddy from 1.10.10 to 1.10.13. <details> <summary>Release notes</summary> <p><em>Sourced from <a href="https://github.com/raphw/byte-buddy/releases">byte-buddy's releases</a>.</em></p> <blockquote> <h2>Byte Buddy 1.10.13</h2> <ul> <li>Add possibility to filter class loaders before attempting to load a class using the <code>AgentBuilder</code>'s resubmission feature.</li> <li>Add <code>nameOf</code> matcher for more efficient string matching based on a hash set.</li> </ul> <h2>Byte Buddy 1.10.12</h2> <ul> <li>Experimental support for Java 16.</li> <li>Support all constant pool constant types in all APIs.</li> <li>Adjust methods for bootstrap arguments to allow types of <em>constantdynamic</em> constants.</li> <li>Correctly resolve handle type for method handles on private constructors.</li> <li>Fix stack size computation for minimal methods in <code>Advice</code>.</li> </ul> <h2>Byte Buddy 1.10.11</h2> <ul> <li>Emit full frame after super or auxiliary constructor call in constructors if no full frame was already issued within this constructor.</li> <li>Support methods that start with a stack map frame before any code.</li> <li>Pop array after <code>@AllArguments</code> parameter.</li> <li>Fix source inclusion for ASM commons.</li> <li>Avoid resolution of detached types when replacing target types in generic arrays on members of instrumented types.</li> <li>Fix validation of member substitution.</li> <li>Include post processor for <code>Advice</code>.</li> </ul> </blockquote> </details> <details> <summary>Changelog</summary> <p><em>Sourced from <a href="https://github.com/raphw/byte-buddy/blob/master/release-notes.md">byte-buddy's changelog</a>.</em></p> <blockquote> <h3>27. June 2020: version 1.10.13</h3> <ul> <li>Add possibility to filter class loaders before attempting to load a class using the <code>AgentBuilder</code>'s resubmission feature.</li> <li>Add <code>nameOf</code> matcher for more efficient string matching based on a hash set.</li> </ul> <h3>18. June 2020: version 1.10.12</h3> <ul> <li>Experimental support for Java 16.</li> <li>Support all constant pool constant types in all APIs.</li> <li>Adjust methods for bootstrap arguments to allow types of <em>constantdynamic</em> constants.</li> <li>Correctly resolve handle type for method handles on private constructors.</li> <li>Fix stack size computation for minimal methods in <code>Advice</code>.</li> </ul> <h3>4. June 2020: version 1.10.11</h3> <ul> <li>Emit full frame after super or auxiliary constructor call in constructors if no full frame was already issued within this constructor.</li> <li>Support methods that start with a stack map frame before any code.</li> <li>Pop array after <code>@AllArguments</code> parameter.</li> <li>Fix source inclusion for ASM commons.</li> <li>Avoid resolution of detached types when replacing target types in generic arrays on members of instrumented types.</li> <li>Fix validation of member substitution.</li> <li>Include post processor for <code>Advice</code>.</li> </ul> </blockquote> </details> <details> <summary>Commits</summary> <ul> <li><a href="https://github.com/raphw/byte-buddy/commit/68dc99ca6f2b812bcb9a8b90cfdafc17a2637ff5"><code>68dc99c</code></a> [maven-release-plugin] prepare release byte-buddy-1.10.13</li> <li><a href="https://github.com/raphw/byte-buddy/commit/4400dca3ed6116ed2c36e3a3edfa0ca1d794f8fb"><code>4400dca</code></a> [release] release new version</li> <li><a href="https://github.com/raphw/byte-buddy/commit/16792968a8b85929de1143b37f709f71ca0a3d63"><code>1679296</code></a> Add possibility to filter on class loader upon resubmission.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/2090772340c0c537e42d08a100ef1ec92ab84c7a"><code>2090772</code></a> Remove diamond operator.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/ad4749c1d42deba944b46b0a25a0f1113b3f64f5"><code>ad4749c</code></a> Improve toString method.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/25a7c3e13750f52ef8a6ace22a57c5aa781f77cf"><code>25a7c3e</code></a> Clean up.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/a750327fe6f5097f3b23396ce3d61e692dbee08b"><code>a750327</code></a> Merge pull request <a href="https://github-redirect.dependabot.com/raphw/byte-buddy/issues/887">#887</a> from richardstartin/namedoneof</li> <li><a href="https://github.com/raphw/byte-buddy/commit/a2f79d1e5d146ad47417dca5994a7a74fb1c0e03"><code>a2f79d1</code></a> implement namedOneOf matcher for NamedElements</li> <li><a href="https://github.com/raphw/byte-buddy/commit/8d6a46e5863d470d71112651a0c6511ad92ace9e"><code>8d6a46e</code></a> Add release notes.</li> <li><a href="https://github.com/raphw/byte-buddy/commit/703473c8e85374a03850a8e327562fb28c23e8b3"><code>703473c</code></a> [maven-release-plugin] prepare for next development iteration</li> <li>Additional commits viewable in <a href="https://github.com/raphw/byte-buddy/compare/byte-buddy-1.10.10...byte-buddy-1.10.13">compare view</a></li> </ul> </details> <br />

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


<details> <summary>Dependabot commands and options</summary> <br />

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot merge will merge this PR after your CI passes on it
  • @dependabot squash and merge will squash and merge this PR after your CI passes on it
  • @dependabot cancel merge will cancel a previously requested merge and block automerging
  • @dependabot reopen will reopen this PR if it is closed
  • @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
  • @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
  • @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
  • @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
  • @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
  • @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

  • Update frequency (including time of day and day of week)
  • Pull request limits (per update run and/or open at any time)
  • Out-of-range updates (receive only lockfile updates, if desired)
  • Security updates (receive only security updates, if desired)

</details>

+1 -1

0 comment

1 changed file

dependabot-preview[bot]

pr closed time in 6 days

issue commenttonybaloney/pycharm-security

Flask ORM (?) SQL Injection

@Odame this is still up for grabs if you want to help

tonybaloney

comment created time in 6 days

delete branch tonybaloney/requests-staticmock

delete branch : pyup-update-tox-3.0.0-to-3.16.0

delete time in 8 days

push eventtonybaloney/requests-staticmock

pyup-bot

commit sha c06eaeb843126dbd50409ae457914fd920e2fb0d

Update tox from 3.0.0 to 3.16.1

view details

push time in 8 days

delete branch tonybaloney/requests-staticmock

delete branch : pyup-update-tox-3.0.0-to-3.15.2

delete time in 10 days

push eventtonybaloney/requests-staticmock

pyup-bot

commit sha c5730d52056ee180b6183bad6f4d9920eee3cc8e

Update tox from 3.0.0 to 3.16.0

view details

push time in 10 days

startedCarreau/pytest_covid

started time in 13 days

startedPyO3/pyo3

started time in 16 days

pull request commentJetBrains/intellij-community

Add support for Python 3.10 version string

Just signed it @ybedrov

tonybaloney

comment created time in 19 days

PR opened JetBrains/intellij-community

Add support for Python 3.10 version string

Current EAP incorrectly reports Python 3.10 as Python 3.1 (because of the LanguageLevel implementation)

Add support for Python 3.10 version string parsing and update the toString() method to work with version numbers beyond 3.9

+40 -2

0 comment

2 changed files

pr created time in 19 days

create barnchtonybaloney/intellij-community

branch : python310

created branch time in 19 days

startedisidentical/pyasdl

started time in 19 days

create barnchtonybaloney/cpython

branch : backtick_names

created branch time in 19 days

issue closedmicrosoft/vscode-python

Refactor LinterId from string to Enum to resolve TODO

Resolve TODO item in https://github.com/microsoft/vscode-python/blob/master/src/client/linters/types.ts#L15

See PR #12116

code-health tag please :-)

closed time in 19 days

tonybaloney

issue commentmicrosoft/vscode-python

Refactor LinterId from string to Enum to resolve TODO

PR is merged.

tonybaloney

comment created time in 19 days

issue commenttonybaloney/pycharm-security

Update insecure.json regularly

also, the Snyk integration uses a live database.

charleswhchan

comment created time in 20 days

issue commenttonybaloney/pycharm-security

Update insecure.json regularly

thanks for raising this, the PyUp database wasn't updated for about 9 months when I initially developed this plugin. In the settings, you can point to a URL, instead of using the embedded version.

charleswhchan

comment created time in 20 days

pull request commentmicrosoft/vscode-python

Update incorrect JSDoc annotations

@kimadeline done!

tonybaloney

comment created time in 20 days

push eventtonybaloney/vscode-python

Anthony Shaw

commit sha 405421f3f6452acf1e12448c88aa6ef656d5e27c

Update src/test/mocks/vsc/uri.ts Co-authored-by: Kim-Adeline Miguel <51720070+kimadeline@users.noreply.github.com>

view details

push time in 20 days

push eventtonybaloney/vscode-python

Anthony Shaw

commit sha a76cd1cbbf159f4d0eb17627606788c489b0d1a4

Update src/client/datascience/jupyter/kernels/kernelSelections.ts Co-authored-by: Kim-Adeline Miguel <51720070+kimadeline@users.noreply.github.com>

view details

push time in 20 days

push eventtonybaloney/vscode-python

Anthony Shaw

commit sha 467f5987466e122395b25477d64371fe36ca360c

Update src/client/datascience/jupyter/kernels/kernelSelector.ts Co-authored-by: Kim-Adeline Miguel <51720070+kimadeline@users.noreply.github.com>

view details

push time in 20 days

push eventtonybaloney/vscode-python

Anthony Shaw

commit sha 0f444f34cbb281e4f4c5008bb51e8e5efcdae540

Update src/client/common/utils/cacheUtils.ts Co-authored-by: Kim-Adeline Miguel <51720070+kimadeline@users.noreply.github.com>

view details

push time in 20 days

issue openedmicrosoft/python-language-server

Feature Request/Question: Extensible Code Inspections

Hey team,

I'm working on static-code analysis for Python, specifically security related.

I've written a plugin for PyCharm, using their PSI API that enables you to traverse documents, and write custom inspections and alerts. For example, this function is a custom expression visitor.

I'm trying to figure out if it's possible to write a similar code analysis extension for VScode/Python? So far I've looked at:

  • How the existing linters work, but they are spawned processes that the extension parses the text output, not integrated into the LSP
  • How the LSP works and the Python Language Server, but this project isn't extensible

Is it possible to write custom visitors that inspect the Python code inside VScode and then issue warnings back to the editor (I guess as another extension?)?

created time in 22 days

delete branch tonybaloney/requests-staticmock

delete branch : pyup-update-sphinx-1.7.5-to-3.1.0

delete time in 23 days

push eventtonybaloney/requests-staticmock

pyup-bot

commit sha 6d167286d0cdb064ef5f2d0b7e69dd01bf2e8eac

Update sphinx from 1.7.5 to 3.1.1

view details

push time in 23 days

startedapache/airflow

started time in a month

Pull request review commentsphinx-contrib/confluencebuilder

translator: refactor translator

+# -*- coding: utf-8 -*-+"""+:copyright: Copyright 2016-2020 Sphinx Confluence Builder Contributors (AUTHORS)+:license: BSD-2-Clause (LICENSE)+"""++from ..exceptions import ConfluenceError

can absolute imports be used instead?

jdknight

comment created time in a month

issue openedmicrosoft/vscode-python

Feature Request/Question: Extensible Code Inspections

Hey team,

I'm working on static-code analysis for Python, specifically security related.

I've written a plugin for PyCharm, using their PSI API that enables you to traverse documents, and write custom inspections and alerts. For example, this function is a custom expression visitor.

I'm trying to figure out if it's possible to write a similar code analysis extension for VScode/Python? So far I've looked at:

  • How the existing linters work, but they are spawned processes that the extension parses the text output, not integrated into the LSP
  • How the LSP works and the Python Language Server, but this project isn't extensible

Is it possible to write custom visitors that inspect the Python code inside VScode and then issue warnings back to the editor (I guess as another extension?)?

created time in a month

issue openedtonybaloney/pytest-azurepipelines

New release doesn't generate XML files unless explicitly set on the command line

unless --nunitxml is on the command-line run, the XML file isn't generated.

I think this is because of the order in which pytest_configure is run and the order in which plugins are loaded by pytest.

Because this plugin does 2 things at configuration:

  1. Overrides the configuration of another plugin (either the Junit or Nunit one)
  2. Configures itself

I think the solution is to use another hook for the overriding of the other plugins and just use pytest_configure for the actual configuration

created time in a month

issue commenttonybaloney/pytest-azurepipelines

Internal error when running in Azure CI: `pytest_warning_captured` unknown hook

actually, I got that the wrong way around. the hook is going to be deprecated but it wasn't supported in earlier versions.

Which version of Pytest are you using?

ljvmiranda921

comment created time in a month

issue commenttonybaloney/pytest-azurepipelines

Feedback for 1.0.0rc3

thanks, this is really helpful actually. in the output, I can see that it didn't produce or upload any test results.

It did produce the coverage report files though.

canyon289

comment created time in a month

push eventtonybaloney/tonybaloney.github.io

Anthony Shaw

commit sha 2327c784743e1cb265ed4a9af1116b54091a5aad

Fix link

view details

push time in a month

push eventtonybaloney/tonybaloney.github.io

Anthony Shaw

commit sha f4f1d37253391b0640bc2537ec1f6f443bba3816

Add new blog post on pipelines schemas.

view details

push time in a month

create barnchtonybaloney/cpython

branch : almost_39_peg

created branch time in a month

delete branch tonybaloney/requests-staticmock

delete branch : pyup-update-sphinx-1.7.5-to-3.0.4

delete time in a month

push eventtonybaloney/requests-staticmock

pyup-bot

commit sha e75fbdace0e4906f090f672296e47f5a982a6d9f

Update sphinx from 1.7.5 to 3.1.0

view details

push time in a month

delete branch tonybaloney/requests-staticmock

delete branch : pyup-update-flake8-3.5.0-to-3.8.2

delete time in a month

push eventtonybaloney/requests-staticmock

pyup-bot

commit sha 003661bd700f252559e3614af5ff68bee72fee09

Update flake8 from 3.5.0 to 3.8.3

view details

push time in a month

issue commenttonybaloney/pytest-azurepipelines

Internal error when running in Azure CI: `pytest_warning_captured` unknown hook

This hook has been deprecated, please try version 1.0.0rc4 of this plugin

ljvmiranda921

comment created time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha 930ffa221f9a2de0332bb7185590cc1b78f2c6ae

Removed deprecated hook

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha c2a7e6c26a6ec3a9a91fd64b7157d0f3e7c6520e

Removed deprecated hook

view details

push time in a month

issue commenttonybaloney/pytest-azurepipelines

failing with Exit code 5 received /bin/bash

please try using version 1.0.0rc3 and report if this resolves your issue. This is a prerelease

hiteshiat1

comment created time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha c611cb4449f879d32646c0839bdd8c19e6622a6e

Patch updates

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha d04c2911d4adf53d04447cf96d5cb57fa4306f3c

Updates for xUnit 2

view details

Anthony Shaw

commit sha dda5886bc565788bcb1531b8921db204caa86ed6

Updates for xUnit 2

view details

Anthony Shaw

commit sha fffa3c34b0d35c6c1213e4059d57f52e35b1e3c7

Test with and without nunit

view details

Anthony Shaw

commit sha fc5e5bcfc848dd9f2d5a06210d99868d049f53ae

Remove attachments

view details

Anthony Shaw

commit sha dad0e69621c63f225a12e3f66de2a22ff4f1f3b1

Remove Python 2

view details

Anthony Shaw

commit sha 0fe6157e233921b001c519abbfdeccb464b62d17

Fix nunit plugin name

view details

Anthony Shaw

commit sha 5945400ae7fa5409805d2045693647042c40f09a

Always use NUnit

view details

Anthony Shaw

commit sha 81699631339791b11e86de20d9fe0135f030105a

Force xUnit output

view details

Anthony Shaw

commit sha 3932c319b45107ea22fe1ad85d189310b1110f00

Add back old fixture and tests

view details

Anthony Shaw

commit sha f0149c2a422399a332075329b510285a706b6d72

Merge pull request #45 from tonybaloney/xunit2 Updates for xUnit 2

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha 3932c319b45107ea22fe1ad85d189310b1110f00

Add back old fixture and tests

view details

push time in a month

pull request commenttonybaloney/pytest-azurepipelines

injects CSS styles into pytest coverage HTML files

brilliant. thank you

RobertoPrevato

comment created time in a month

pull request commentmicrosoft/vscode-python

Refactor LinterId from string union to an enum

@karrtikr both changes made

tonybaloney

comment created time in a month

push eventtonybaloney/vscode-python

Anthony Shaw

commit sha 28bb26fa85c6826f1b4e073f868467da2e38de4b

Revert lockfile changes

view details

Anthony Shaw

commit sha b2c739d89f68a814231d4d40e281838ee2a298ca

Merge remote-tracking branch 'me/lint_line' into lint_line

view details

push time in a month

push eventtonybaloney/vscode-python

Anthony Shaw

commit sha 983d373f6b617adfaee946cc3d0db5c7b50f3be8

Update news/3 Code Health/12116.md Co-authored-by: Karthik Nadig <kanadig@microsoft.com>

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha 81699631339791b11e86de20d9fe0135f030105a

Force xUnit output

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha 5945400ae7fa5409805d2045693647042c40f09a

Always use NUnit

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha 0fe6157e233921b001c519abbfdeccb464b62d17

Fix nunit plugin name

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha dad0e69621c63f225a12e3f66de2a22ff4f1f3b1

Remove Python 2

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha fc5e5bcfc848dd9f2d5a06210d99868d049f53ae

Remove attachments

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha fffa3c34b0d35c6c1213e4059d57f52e35b1e3c7

Test with and without nunit

view details

push time in a month

push eventtonybaloney/pytest-azurepipelines

Anthony Shaw

commit sha dda5886bc565788bcb1531b8921db204caa86ed6

Updates for xUnit 2

view details

push time in a month

create barnchtonybaloney/pytest-azurepipelines

branch : xunit2

created branch time in a month

push eventtonybaloney/pytest-azurepipelines

Roberto Prevato

commit sha e076e341692bdf6d348b714ec305f2b84ad2ef53

injects CSS styles into pytest coverage HTML files

view details

Anthony Shaw

commit sha 8a9818aaf14e5216d3bbf66d1e1f3c8a9e590b4a

Merge branch 'master' into css_styles2

view details

Anthony Shaw

commit sha 1d8539e9cea95a6fe5e9f67f09997d9f1463dce3

Merge pull request #42 from RobertoPrevato/css_styles2 injects CSS styles into pytest coverage HTML files

view details

push time in a month

PR merged tonybaloney/pytest-azurepipelines

injects CSS styles into pytest coverage HTML files

Hi, this PR is to inject CSS styles into the HTML generated by pytest coverage, with some additions to make the report look nicer on Azure DevOps portal (and hide those elements that require JavaScript to run, since JS cannot run in the iframe used by Azure DevOps).

Before making this PR, I wasn't familiar with the setup.py options py_modules and data_files, and I am not sure if you like the way I included the resource file. The included CSS file could be made smaller, by reading the one from the htmlcov folder generated by pytest-cov and concatenating it with the additional rules to improve the UI on Azure DevOps portal, but I don't have a clear preference about this.

Live examples:

image

image

+225 -2

0 comment

4 changed files

RobertoPrevato

pr closed time in a month

push eventRobertoPrevato/pytest-azurepipelines

Anthony Shaw

commit sha bb33c49b100c08ef997f0e53f00e9e355f53c2bb

Patch nunit version for release

view details

Anthony Shaw

commit sha 8352689d085eaed6dad5f2d94101a069bc6852aa

Update azure-pipelines.yml

view details

Anthony Shaw

commit sha 8a9818aaf14e5216d3bbf66d1e1f3c8a9e590b4a

Merge branch 'master' into css_styles2

view details

push time in a month

delete branch tonybaloney/requests-staticmock

delete branch : pyup-update-tox-3.0.0-to-3.15.1

delete time in a month

push eventtonybaloney/requests-staticmock

pyup-bot

commit sha ecd22cc8fae5d78e9e264d499f3efd6e1757305a

Update tox from 3.0.0 to 3.15.2

view details

push time in a month

PR closed asweigart/pyautogui

add logic to typewrite so that interval can be a callable

add logic to typewrite so that interval can be a callable as well as a static value.

For example, you might want it to be randomized, or specific to the character you're typing.

+12 -4

0 comment

1 changed file

tonybaloney

pr closed time in a month

push eventtonybaloney/wily-pycharm

Anthony Shaw

commit sha d6558daf8b3159a5d69d928f230d9a222d7b47f8

Merge remote-tracking branch 'origin/master'

view details

Anthony Shaw

commit sha 7295ac58a33fc632e5b682f86288ab12776bc3f0

Merge remote-tracking branch 'origin/master'

view details

Anthony Shaw

commit sha f76441be18b11a9ed0f78feed78a18f16c328f56

Support PyCharm 2020.2 EAP

view details

push time in a month

delete branch tonybaloney/wily-pycharm

delete branch : tuning

delete time in a month

push eventtonybaloney/wily-pycharm

Anthony Shaw

commit sha ec69f56bcb27bc92a68679af99d7fe6633a67d4f

Add tests

view details

Anthony Shaw

commit sha ec4b72bf484784f5d9d67f070bca9db347e11893

Add tests

view details

Anthony Shaw

commit sha caa55f63b5240eead9bac943f8455ebad0945ef5

Add a test and fine tune the algorithm a bit!

view details

Anthony Shaw

commit sha 33fbfe3995d3fa90814f8bde8211adbbd9f1e745

Merge pull request #2 from tonybaloney/tuning Tuning

view details

push time in a month

PR merged tonybaloney/wily-pycharm

Tuning
+184 -17

0 comment

9 changed files

tonybaloney

pr closed time in a month

more