Debian Package Tracker
Register | Log in
Subscribe

bandit

Security oriented static analyzer for Python code - Metapackage

Choose email to subscribe with

general
  • source: bandit (main)
  • version: 1.9.4-1
  • maintainer: Debian OpenStack (DMD)
  • uploaders: Thomas Goirand [DMD] – Dave Walker (Daviey) [DMD]
  • arch: all
  • std-ver: 4.4.1
  • VCS: Git (Browse, QA)
versions [more versions can be listed by madison] [old versions available from snapshot.debian.org]
[pool directory]
  • o-o-stable: 1.6.2-1
  • oldstable: 1.6.2-2
  • stable: 1.7.10-2
  • testing: 1.7.10-3
  • unstable: 1.9.4-1
versioned links
  • 1.6.2-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 1.6.2-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 1.7.10-2: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 1.7.10-3: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
  • 1.9.4-1: [.dsc, use dget on this link to retrieve source package] [changelog] [copyright] [rules] [control]
binaries
  • bandit
  • python3-bandit
action needed
Marked for autoremoval on 10 August due to flask, httpx, python-inline-snapshot, vcr.py: #1140859, #1140876, #1140980, #1141036 high
Version 1.7.10-3 of bandit is marked for autoremoval from testing on Mon 10 Aug 2026. It depends (transitively) on flask, httpx, python-inline-snapshot, vcr.py, affected by #1140859, #1140876, #1140980, #1141036. You should try to prevent the removal by fixing these RC bugs.
Created: 2026-07-04 Last update: 2026-07-08 02:00
lintian reports 7 warnings normal
Lintian reports 7 warnings about this package. You should make the package lintian clean getting rid of them.
Created: 2025-12-30 Last update: 2025-12-30 05:30
Standards version of the package is outdated. wishlist
The package should be updated to follow the last version of Debian Policy (Standards-Version 4.7.4 instead of 4.4.1).
Created: 2018-02-10 Last update: 2026-07-07 16:50
testing migrations
  • excuses:
    • Migration status for bandit (1.7.10-3 to 1.9.4-1): BLOCKED: Rejected/violates migration policy/introduces a regression
    • Issues preventing migration:
    • ∙ ∙ Autopkgtest for nova/2:33.0.1-4: amd64: Pass, arm64: Pass, armhf: No tests, superficial or marked flaky ♻ (reference ♻), i386: No tests, superficial or marked flaky ♻ (reference ♻), loong64: No tests, superficial or marked flaky ♻ (reference ♻), ppc64el: Regression ♻ (reference ♻), riscv64: No tests, superficial or marked flaky ♻, s390x: No tests, superficial or marked flaky ♻
    • ∙ ∙ Too young, only 1 of 5 days old
    • Additional info (not blocking):
    • ∙ ∙ Updating bandit will fix bugs in testing: #1141510
    • ∙ ∙ Piuparts tested OK - https://piuparts.debian.org/sid/source/b/bandit.html
    • ∙ ∙ Reproduced on amd64 - info
    • ∙ ∙ Reproduced on arm64 - info
    • ∙ ∙ Reproduced on armhf - info
    • ∙ ∙ Reproduced on i386 - info
    • Not considered
news
[rss feed]
  • [2026-07-07] Accepted bandit 1.9.4-1 (source) into unstable (Thomas Goirand)
  • [2026-01-04] bandit 1.7.10-3 MIGRATED to testing (Debian testing watch)
  • [2025-12-29] Accepted bandit 1.7.10-3 (source) into unstable (Thomas Goirand)
  • [2024-12-25] bandit 1.7.10-2 MIGRATED to testing (Debian testing watch)
  • [2024-12-20] Accepted bandit 1.7.10-2 (source) into unstable (Thomas Goirand)
  • [2024-10-14] bandit 1.7.10-1 MIGRATED to testing (Debian testing watch)
  • [2024-10-09] Accepted bandit 1.7.10-1 (source) into unstable (Thomas Goirand)
  • [2024-09-29] bandit 1.7.8-2 MIGRATED to testing (Debian testing watch)
  • [2024-09-24] Accepted bandit 1.7.8-2 (source) into unstable (Thomas Goirand)
  • [2024-05-13] bandit 1.7.8-1 MIGRATED to testing (Debian testing watch)
  • [2024-05-08] Accepted bandit 1.7.8-1 (source) into unstable (Thomas Goirand)
  • [2023-08-19] bandit 1.6.2-3 MIGRATED to testing (Debian testing watch)
  • [2023-08-14] Accepted bandit 1.6.2-3 (source) into unstable (Thomas Goirand)
  • [2023-01-04] bandit 1.6.2-2 MIGRATED to testing (Debian testing watch)
  • [2022-12-29] Accepted bandit 1.6.2-2 (source) into unstable (Thomas Goirand)
  • [2020-03-01] bandit 1.6.2-1 MIGRATED to testing (Debian testing watch)
  • [2020-02-25] Accepted bandit 1.6.2-1 (source) into unstable (Thomas Goirand)
  • [2019-07-22] bandit 1.5.1-3 MIGRATED to testing (Debian testing watch)
  • [2019-07-16] Accepted bandit 1.5.1-3 (source) into unstable (Thomas Goirand)
  • [2019-03-26] Accepted bandit 1.5.1-2 (source all) into experimental (Thomas Goirand)
  • [2018-09-22] bandit 1.5.1-1 MIGRATED to testing (Debian testing watch)
  • [2018-09-17] Accepted bandit 1.5.1-1 (source all) into unstable (Thomas Goirand)
  • [2018-02-15] bandit 1.1.0-5 MIGRATED to testing (Debian testing watch)
  • [2018-02-10] Accepted bandit 1.1.0-5 (source all) into unstable (Thomas Goirand)
  • [2017-11-11] bandit 1.1.0-4 MIGRATED to testing (Debian testing watch)
  • [2017-11-05] Accepted bandit 1.1.0-4 (source all) into unstable (Thomas Goirand)
  • [2016-11-06] bandit 1.1.0-3 MIGRATED to testing (Debian testing watch)
  • [2016-10-31] Accepted bandit 1.1.0-3 (source all) into unstable (Thomas Goirand)
  • [2016-10-12] bandit 1.1.0-2 MIGRATED to testing (Debian testing watch)
  • [2016-10-04] Accepted bandit 1.1.0-2 (source all) into unstable (Thomas Goirand)
  • 1
  • 2
bugs [bug history graph]
  • all: 0
links
  • homepage
  • lintian (0, 7)
  • buildd: logs, reproducibility
  • popcon
  • browse source code
  • other distros
ubuntu Ubuntu logo [Information about Ubuntu for Debian Developers]
  • version: 1.7.10-3

Debian Package Tracker — Copyright 2013-2025 The Distro Tracker Developers
Report problems to the tracker.debian.org pseudo-package in the Debian BTS.
Documentation — Bugs — Git Repository — Contributing