Static analysis fixes for Python codebase (#1277)

* Don't log names of internal symbols that can be used for attacks * Add integrity check to dropzone.js library * Better a11y of web form labels * Safer handling of file download paths * Don't invert boolean check * Make backend auth check a flask abort * Clean up indentation to remove unwanted tabs * Run workflow either on PR events, or branch pushes, not both
2025-07-18 04:24:11 +00:00 · 2023-11-01 22:28:53 +09:00
parent 37b9110c99
commit 063e8ed32b
12 changed files with 79 additions and 61 deletions
--- a/python/web/tests/api/test_files.py
+++ b/python/web/tests/api/test_files.py
@@ -362,7 +362,7 @@ def test_download_url_to_dir(env, httpserver, http_client, list_files, delete_fi
    assert file_name in list_files()
    assert (
        response_data["messages"][0]["message"]
-        == f"{file_name} downloaded to {env['images_dir']}{subdir}"
+        == f"Downloaded file to {env['images_dir']}{subdir}{file_name}"
    )

    # Cleanup