Jul-12-2018, 07:30 PM
I wasn't familiar with checkmarx, and just did a quick Google search so if I seem ignorant that would be why...
I'm curious as well which modules are being flagged.
(Jul-12-2018, 06:23 PM)saisankalpj Wrote: level-HIGH from inbuilt libraries which i didIf you used pip, then they're not built-in. That's what pip is for - getting third party libraries. They're not always trustworthy.
install with pip
(Jul-12-2018, 06:23 PM)saisankalpj Wrote: so how should i avoid this now.If you want to avoid the warnings from checkmarx, then you need to stop using those modules. I can't speak to how reliable checkmarx is in terms of whether it's worth actually stopping using the modules, or if they use whitelist or blacklist.
I'm curious as well which modules are being flagged.