Specialty Checks

Bento includes specialty checks for Python web apps and open source checks for Python, Docker, and shell files. Checks are developed by r2c’s program analysis team and fine-tuned based on their behavior across thousands of open source projects using the r2c platform.

Flask checksDjango checksJinja checksRequests checks
  • Use timeout

    Finds Requests methods without a timeout

    Use scheme

    Finds URLs passed to Requests that don’t have a URL scheme

    No auth over http

    Detects when the auth parameter is used over http, potentially exposing credentials

Boto 3 checksClick checks