Skip to content

Security: matthewdeanmartin/so_pip

docs/security.md

Security Considerations

Ha, ha, ha... ok, now seriously.

  • Read code before you run it
  • Do not run this as part of an automated build pipeline
  • Only run this interactively
  • This app won't run code from StackOverflow, you'll have to run that code.

Copying code from stackover flow ...

Scholars have studied code reuse from SO

Security Features

  • Runs safety on inferred package list
  • Put everything into setup.cfg and almost noting in setup.py.
  • TODO: Optionally wrap all code in def run(): and if name=main: run()
  • TODO: Support pinning to a known version

There aren’t any published security advisories