vulnerability-checker 0.2.3

Library for detecting vulnerabilities in Python code

Vulnerability Checker

A library for detecting vulnerabilities in Python code. Designed for integration with CI/CD systems such as GitLab CI/CD. Supports Python 3.8 and above.

Features

• Static code analysis to detect security vulnerabilities
• Dependency checking for known vulnerabilities
• Analysis of insecure code constructs
• Returns non-zero exit code when issues are found
• Generates detailed vulnerability reports

Requirements

• Python 3.8 - 3.13
• Dependencies listed in pyproject.toml (automatically installed with the package)
• If you use Poetry for dependency management, you need to install the poetry-plugin-export plugin:

  poetry self add poetry-plugin-export
  

Installation

pip install vulnerability-checker

Usage

Command Line

# Basic directory analysis
vulncheck /path/to/your/project

# Analysis with JSON report generation
vulncheck /path/to/your/project --output report.json

# Check only specific vulnerability types
vulncheck /path/to/your/project --checks sql-injection,xss,dependency-check

Available Flags

• --output <filename>: Specifies the name of the file to save the report (e.g., --output report.json).
• --checks <check_types>: Specifies which types of vulnerabilities to check (e.g., --checks sql-injection,xss,dependency-check).
• --verbose: Detailed output.
• --exit-zero: Always return 0 exit code, even when vulnerabilities are found.

GitLab CI/CD Integration

security_check:
  stage: test
  script:
    - pip install vulnerability-checker
    - vulncheck . --output report.json
  artifacts:
    paths:
      - report.json