Secure Coding mailing list archives
has any one completed a python security code review`
From: fw at deneb.enyo.de (Florian Weimer)
Date: Thu, 22 Apr 2010 22:25:45 +0200
* Matt Parsons:
Has anyone completed a python security code review?
I believe Google has, for their AppEngine product.
What would you look for besides inputs, outputs and dangerous functions?
Does it involve mobile code? That would be quite a challenge. There are also some historically insecure/risky APIs, such as pickling and some DB-API versions.
Current thread:
- has any one completed a python security code review` Matt Parsons (Apr 05)
- has any one completed a python security code review` Romain Gaucher (Apr 06)
- has any one completed a python security code review` Paul Powenski (Apr 06)
- has any one completed a python security code review` James Walden (Apr 06)
- has any one completed a python security code review` Pascal Meunier (Apr 07)
- has any one completed a python security code review` Florian Weimer (Apr 22)
- <Possible follow-ups>
- has any one completed a python security code review` Peter G. Neumann (Apr 06)
- has any one completed a python security code review` Peter G. Neumann (Apr 08)