Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Support AI powered suggestion of fixes #1214

Open
ericwb opened this issue Dec 30, 2024 · 0 comments
Open

Support AI powered suggestion of fixes #1214

ericwb opened this issue Dec 30, 2024 · 0 comments
Labels
enhancement New feature or request

Comments

@ericwb
Copy link
Member

ericwb commented Dec 30, 2024

Is your feature request related to a problem? Please describe.
Another SAST for Golang named Gosec has a feature to suggest code fixes using an AI/LLM. It would be nice to have the same for Bandit.

Describe the solution you'd like
We could take a similar approach to Gosec by working with an external API or something different. Needs more investigation on what would be best for Bandit.

Describe alternatives you've considered
The alternative is for the code fix suggestions be provided based on the analysis. This can be done without any dependency on an AI, but may suggest incorrect code or even results that break code.

See:
#439

Additional context
https://github.com/securego/gosec?tab=readme-ov-file#auto-fixing-vulnerabilities

Love this idea? Give it a 👍. We prioritize fulfilling features with the most 👍.
@ericwb ericwb added the enhancement New feature or request label Dec 30, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@ericwb