Develop an automatic test/tool to detect new security flaws in the embedded python or dependencies #1612
Assignees
Comments
UpdateI'm currently waiting for the related issue to be approved and merged (#1615) so I can continue as we discussed with the team. |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Hi team,
We are looking to develop a tool or test that allows us to automate the process of analyzing security flags in the Python embedded with Wazuh and in the installed deps.
The goal is to be able to launch this tool or test manually every X days at first and finally automate this process for each PR in the main repo.
For the development of this tool or test, we can use tools such as Safety or any other that allows us to automate the process and generate a report to later analyze it and determine if there is any new vulnerability.
The tool should review the requeriments.txt file for possible vulnerabilities, in addition to the current Python version, to determine if there is any type of warning.
Regards
The text was updated successfully, but these errors were encountered: