fix: add nosec comments for B104 in config.py
Some checks failed
Integration Tests / test-service-integration (push) Successful in 11s
Multi-Node Blockchain Health Monitoring / health-check (push) Successful in 2s
P2P Network Verification / p2p-verification (push) Successful in 2s
Python Tests / test-python (push) Successful in 10s
Security Scanning / security-scan (push) Successful in 21s
Blockchain Synchronization Verification / sync-verification (push) Failing after 5s
Some checks failed
Integration Tests / test-service-integration (push) Successful in 11s
Multi-Node Blockchain Health Monitoring / health-check (push) Successful in 2s
P2P Network Verification / p2p-verification (push) Successful in 2s
Python Tests / test-python (push) Successful in 10s
Security Scanning / security-scan (push) Successful in 21s
Blockchain Synchronization Verification / sync-verification (push) Failing after 5s
- Add nosec B104 comments for rpc_bind_host and p2p_bind_host - These are intentional defaults for distributed blockchain - P2P nodes need to accept connections from peers - RPC needs to be accessible from other machines in cluster - Suppresses Bandit security scan warnings
This commit is contained in:
aitbc
@@ -26,10 +26,10 @@ class ChainSettings(BaseSettings):
|
||||
supported_chains: str = "ait-devnet" # Comma-separated list of supported chain IDs
|
||||
db_path: Path = Path("/var/lib/aitbc/data/chain.db")
|
||||
|
||||
rpc_bind_host: str = "0.0.0.0"
|
||||
rpc_bind_host: str = "0.0.0.0" # nosec B104: intentional for distributed blockchain
|
||||
rpc_bind_port: int = 8080
|
||||
|
||||
p2p_bind_host: str = "0.0.0.0"
|
||||
p2p_bind_host: str = "0.0.0.0" # nosec B104: intentional for P2P peer connections
|
||||
p2p_bind_port: int = 8001
|
||||
p2p_node_id: str = ""
|
||||
|
||||
|
||||
Reference in New Issue
Block a user