We all usually have a CI server that runs our tests and verifies the python syntax and some other common programming errors using pylint. I was wondering... is there any security-focused static code analyzer that can find (security) bugs in my django project?
For this project we're already doing peer review of the source code we commit/push, but realized that it would be nice to have "something more" to cover more ground on the security side.
asked 15 Sep, 19:51
actually what kind of security bugs , i never think about security when i am using django because as far as i know framework itself forces you to write secure code
such as xss, CSRF, sql injection
answered 16 Sep, 11:57