Bosch_Demo/code_scan
4
0
Fork 0
Code Issues Pull Requests 2 Actions Packages Projects Releases Wiki Activity

Compare commits

base: Bosch_Demo:04518812f457fca278ab3a378d6290861bb51326
Branches Tags
Bosch_Demo:main Bosch_Demo:dingshuo-patch-6 Bosch_Demo:dingshuo-patch-5 Bosch_Demo:dingshuo-patch-4 Bosch_Demo:dingshuo-patch-3 Bosch_Demo:dev Bosch_Demo:dingshuo-patch-2 Bosch_Demo:dingshuo-patch-1
..
compare: Bosch_Demo:9a14c0b219421b83707811905d945501fc7d4425
Branches Tags
Bosch_Demo:main Bosch_Demo:dingshuo-patch-6 Bosch_Demo:dingshuo-patch-5 Bosch_Demo:dingshuo-patch-4 Bosch_Demo:dingshuo-patch-3 Bosch_Demo:dev Bosch_Demo:dingshuo-patch-2 Bosch_Demo:dingshuo-patch-1

2 Commits
04518812f4 ... 9a14c0b219

Author SHA1 Message Date
Dang Zerong
9a14c0b219 测试的扫描文件 2026-03-13 18:00:27 +08:00
Dang Zerong
87b2dacf65 测试的扫描文件 2026-03-13 18:00:22 +08:00
2 changed files with 12 additions and 32 deletions
Expand all files Collapse all files

4
README.md
View File

@@ -59,7 +59,7 @@ python app.py
### 1. 构建镜像 ### 1. 构建镜像
```bash ```bash
docker build -t dcr-by1jwyxk44.71826370.xyz/whlaoding/code-scan:latest . docker buildx build --load --push -t dcr-by1jwyxk44.71826370.xyz/whlaoding/code-scan:latest .
``` ```
### 2. 登录仓库 ### 2. 登录仓库
@@ -71,7 +71,7 @@ docker login dcr-by1jwyxk44.71826370.xyz
### 3. Push 到仓库 ### 3. Push 到仓库
```bash ```bash
docker push dcr-by1jwyxk44.71826370.xyz/whlaoding/code-scan:latest docker run -d --name code-scan -p 5000:5000 dcr-by1jwyxk44.71826370.xyz/whlaoding/code-scan:latest
``` ```
### 4. 使用 docker compose 启动 ### 4. 使用 docker compose 启动

40
test_demo/demo_flaws.py
View File

@@ -25,35 +25,15 @@ def unused_variable_demo():
print("Function executed") print("Function executed")
def calculate(): # 缺陷8: 行太长(风格问题)
"""计算并返回结果""" def long_line():
return 42 """这是一行非常非常非常非常非常非常非常非常非常非常非常非常长的代码超过了 120 个字符的限制"""
# 缺陷3: 未定义的变量 # 缺陷9: 缺少空格
def undefined_variable_demo(): def missing_spaces():
"""演示未定义的变量""" """缺少必要空格"""
print(undefined_var) # undefined_var 未定义 x=1+2
y=3*4
if x==1:
# 缺陷4: 变量在定义前使用 print(x)
def use_before_define():
"""在定义前使用变量"""
print(before_var) # before_var 在下面才定义
before_var = 100
# 缺陷5: 硬编码密码(安全问题)
def connect_database():
"""连接数据库"""
password = "admin123" # 硬编码密码
username = "root"
return f"Connecting with {username}:{password}"
# 缺陷6: 使用 eval安全问题
def unsafe_eval():
"""危险使用 eval"""
user_input = "os.system('ls')"
result = eval(user_input) # 危险!
return result