New check: B113: TrojanSource - Bidirectional control characters

[Lucas-C]

Close #749

[sigmavirus24]

Could you rebase please?

[Lucas-C]

@sigmavirus24: Sure, done

[Lucas-C]

I added a commit to please the pep8 check

[Lucas-C]

I just fixed the typo I made in the last commit

[Lucas-C]

I added the missing "SPDX-License-Identifier: Apache-2.0" comment to please flake8

[sigmavirus24]

But I'd like another person to take a gander

[ericwb]

PR #743 is also using B113. First to merge would get it, other would need to change.

[Lucas-C]

Ok, I'm fine with that 😄

[Lucas-C]

Just checking: this is pending approval from @lukehinds and/or @ghugo ?

[sigmavirus24]

Or @ericwb

[Lucas-C]

Ping @lukehinds / @ghugo / @sigmavirus24 / @ericwb:
Hi and happy new year! 😊
I take the liberty to ping about this PR : what's missing to get it approved & merged please?

[Lucas-C]

FYI it has been added to Pylint already: pylint-dev/pylint#5311

[Lucas-C]

I have made some fixups to please the pre-commit hooks, rebased my branch against main,
and I think test_trojansource should be passing now...

At least it does on my environment, with Python 3.7:

$ pytest -vv -k trojansource
...
tests/functional/test_functional.py::FunctionalTests::test_trojansource PASSED                                                  [ 50%]
tests/functional/test_functional.py::FunctionalTests::test_trojansource_latin1 PASSED                                           [100%]

Could you please approve the pipeline execution @ericwb?

[ericwb]

Could you rebase on main and resolve conflicts? Thanks

Also, since this seems more closely related to a type of injection, I
think bandit ID of 613 would be more appropriate.

[Lucas-C]

I see you've added commits, is a rebase still needed @ericwb ?

[ericwb]

The bandit-baseline fails in the pep8 build job. I suspect this is normal since a new plugin was added, so the baseline comparison would be different.

I'll merge and see if it resolves, otherwise I might have to revert.