Review Request #11904 — Created Jan. 4, 2022 and submitted
| Information | |
|---|---|
| chipx86 | |
| Review Board | |
| release-5.0.x | |
| 11907, 11906 | |
| Reviewers | |
| reviewboard | |
Review Board's focus historically has been to provide tools for
automatically or manually catching problems with code before it goes
into a product. The automatic checks come by way of extensions like
Review Bot, and these can only check code once it's been published.There are issues that are best caught before code goes up for review,
and there are also issues that are best caught by default without
needing to install a tool like Review Bot.Two examples would be credentials accidentally left in code and
so-called "Trojan Source" attacks (where code is either accidentally or
intentionally added to a file that displays one way to a user but
executes another way).This begins laying the foundation for code safety checkers, which can
look for suspicious content in code before it's ready for review,
flagging issues that are found.This will be used in the diff validation API and the diff viewer to
highlight any issues that are found. Specific code safety checkers will
be implemented in future changes.
Unit tests pass.
Tested this along with a code checker implementation and the upcoming
diff viewer updates.
| Summary | |
|---|---|
| Description | From | Last Updated |
|---|---|---|
|
E501 line too long (94 > 79 characters) |
 reviewbot
|
|
|
F401 'reviewboard.codesafety.checkers.trojan_source.TrojanSourceCodeSafetyChecker' imported but unused |
reviewbot
|
|
|
F811 redefinition of unused 'test_render_file_alert_html' from line 38 |
reviewbot
|
|
|
E501 line too long (94 > 79 characters) |
reviewbot
|
|
|
Seems like "unicode" probably shouldn't be capitalized here? |
 david
|
|
|
And here. |
david
|
|
|
Seems like an edit got messed up here. |
david
|
|
|
E501 line too long (94 > 79 characters) |
reviewbot
|
|
|
SafeString instead of SafeText? |
 maubin
|
|
|
SafeString instead of SafeText? |
maubin
|
|
|
Just a thought--do we want to make this use an EntryPointRegistry instead? |
david
|
| reviewboard/codesafety/checkers/base.py (Diff revision 1) |
|---|
| reviewboard/codesafety/checkers/registry.py (Diff revision 1) |
|---|
F401 'reviewboard.codesafety.checkers.trojan_source.TrojanSourceCodeSafetyChecker' imported but unused
| reviewboard/codesafety/tests/test_base_code_safety_checker.py (Diff revision 1) |
|---|
F811 redefinition of unused 'test_render_file_alert_html' from line 38
Commits: |
|
|||||||||
|---|---|---|---|---|---|---|---|---|---|---|
Diff: |
Revision 2 (+750) |
|||||||||
| reviewboard/codesafety/checkers/base.py (Diff revision 2) |
|---|
Seems like "unicode" probably shouldn't be capitalized here?
Updated for release-5.0.x:
Keys and str.six usage__future__ importsCommits: |
|
|||||||||
|---|---|---|---|---|---|---|---|---|---|---|
Branch: |
|
|||||||||
Diff: |
Revision 3 (+730) |
|||||||||
Update another docstring to use
Keys.
Commits: |
|
|||||||||
|---|---|---|---|---|---|---|---|---|---|---|
Diff: |
Revision 4 (+734) |
|||||||||
Changed
ugettext_lazytogettext_lazy.
Commits: |
|
|||||||||
|---|---|---|---|---|---|---|---|---|---|---|
Diff: |
Revision 5 (+734) |
|||||||||
| reviewboard/codesafety/checkers/registry.py (Diff revision 5) |
|---|
Just a thought--do we want to make this use an EntryPointRegistry instead?
Changed
SafeTexttoSafeStringin docs.
Commits: |
|
|||||||||
|---|---|---|---|---|---|---|---|---|---|---|
Diff: |
Revision 6 (+734) |
|||||||||