kodeagent.pattern_detector.SecurityPatternDetector#

class kodeagent.pattern_detector.SecurityPatternDetector[source]#

Detects suspicious patterns in Python code using AST analysis. This acts as a backup to LLM-based security review.

The following patterns are detected: - Dangerous builtins (exec, eval, compile, __import__) - Potential obfuscation (base64/hex decoding) - System command execution (subprocess, os.system) - Environment variable access - Infinite loops - Path traversal

Initialize the detector.

__init__()[source]#: Initialize the detector.

Methods

`__init__`()	Initialize the detector.
`generic_visit`(node)	Called if no explicit visitor function exists for a node.
`visit`(node)	Visit a node.
`visit_Attribute`(node)	Detect suspicious attribute access.
`visit_BinOp`(node)	Detect suspicious operations.
`visit_Call`(node)	Detect suspicious function calls.
`visit_Constant`(node)	Detect suspicious constants.
`visit_For`(node)	Detect suspicious loops.
`visit_Import`(node)	Detect suspicious imports.
`visit_ImportFrom`(node)	Detect suspicious from-imports.
`visit_Str`(node)	Detect suspicious strings (Python < 3.8).
`visit_While`(node)	Detect potential infinite loops.

kodeagent.pattern_detector.SecurityPatternDetector#

This Page