add comments for skipped checks

Dazu-io · Dec 9, 2020 · 69a0a3a · 69a0a3a
1 parent e5e196d
commit 69a0a3a
Showing 1 changed file with 4 additions and 0 deletions.
diff --git a/bandit.yml b/bandit.yml
@@ -1 +1,5 @@
+# B322: checks for `input()` which is unsafe in Python 2, but safe in Python 3.
+# B104: checks for binding 0.0.0.0 interface, which should be fine for containers.
+# B301: checks for pickle usage, which is a necessary evil.
+# B303: checks for insecure hash functions like md5, which is good enough for current use cases.
 skips: ['B322', 'B104', 'B301', 'B303']