Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Bugfix] Dependencies Installation issue #29

Merged
merged 2 commits into from
Dec 12, 2023
Merged

[Bugfix] Dependencies Installation issue #29

merged 2 commits into from
Dec 12, 2023

Conversation

sahilsuman933
Copy link
Contributor

The dependencies are not getting installed because it is unable to detect the pip properly. To fix that issue I added shell=True which executes the command directly in the shell.

Error Message:
image

@cla-bot cla-bot
Copy link

cla-bot bot commented Dec 11, 2023

Thank you for your pull request and welcome to our community. We require contributors to sign our Contributor License Agreement, and we don't seem to have the users @sahilsuman933 on file. In order for us to review and merge your code, please contact the project maintainers to get yourself added.

@cla-bot cla-bot
Copy link

cla-bot bot commented Dec 12, 2023

Thank you for your pull request and welcome to our community. We require contributors to sign our Contributor License Agreement, and we don't seem to have the users @sahilsuman933 on file. In order for us to review and merge your code, please contact the project maintainers to get yourself added.

github-advanced-security[bot]
github-advanced-security bot found potential problems Dec 12, 2023
View reviewed changes
trustauthx/cli.py
@@ -62,11 +62,11 @@
print("\nInstalling dependencies...")
def install(packages):
if packages == "pip install fastapi['all']":
subprocess.call("pip install fastapi['all']")
subprocess.call("pip install fastapi['all']", shell=True)

Check notice

Code scanning / Bandit

Starting a process with a partial executable path Note

Starting a process with a partial executable path
trustauthx/cli.py
@@ -62,11 +62,11 @@
print("\nInstalling dependencies...")
def install(packages):
if packages == "pip install fastapi['all']":
subprocess.call("pip install fastapi['all']")
subprocess.call("pip install fastapi['all']", shell=True)

Check notice

Code scanning / Bandit

subprocess call with shell=True seems safe, but may be changed in the future, consider rewriting without shell Note

subprocess call with shell=True seems safe, but may be changed in the future, consider rewriting without shell
trustauthx/cli.py
return
if isinstance(packages, list):
for package in packages:subprocess.call(package)
else:subprocess.call(packages)
for package in packages:subprocess.call(package, shell=True)

Check failure

Code scanning / Bandit

subprocess call with shell=True identified, security issue. Error

subprocess call with shell=True identified, security issue.
trustauthx/cli.py
for package in packages:subprocess.call(package)
else:subprocess.call(packages)
for package in packages:subprocess.call(package, shell=True)
else:subprocess.call(packages, shell=True)

Check failure

Code scanning / Bandit

subprocess call with shell=True identified, security issue. Error

subprocess call with shell=True identified, security issue.
@moonlightnexus moonlightnexus merged commit 7206365 into One-Click-Auth:main Dec 12, 2023
6 of 11 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@sahilsuman933 @moonlightnexus