[QGIS-Developer] How do I get rid of the security warning on my plugin?
Greg Troxel
gdt at lexort.com
Thu Jun 11 16:58:40 PDT 2026
C Hamilton via QGIS-Developer <qgis-developer at lists.osgeo.org> writes:
> My Lat Lon Tools plugin is getting two "Secrets Detection" warnings on
> these two lines of code.
>
> lontile_ = "ABCDEFGHJKLMNPQRSTUVWXYZ"
>
> __base32 = '0123456789bcdefghjkmnpqrstuvwxyz'
>
> Those are certainly scarry, hazardous lines of code (sorry for the
> sarchasm). But really how do I resolve this with your plugin scanners.
> Those lines of code are probably the best way to represent the geohash, and
> georef coordinate conversions. However, I also don't want my plugins to be
> flagged with "Critical security issues found".
By posting here, you request that the scanners be fixed. They are
heuristics, which means they need tweaks when they are wrong.
More information about the QGIS-Developer
mailing list