"Bandit provides a framework for performing security analysis of Python source code, utilizing the ast module from the Python standard library.<p>The ast module is used to convert source code into a parsed tree of Python syntax nodes. Bandit allows users to define custom tests that are performed against those nodes. At the completion of testing, a report is generated that lists security issues identified within the target source code."<p>Wiki page is linked above (<a href="https://wiki.openstack.org/wiki/Security/Projects/Bandit" rel="nofollow">https://wiki.openstack.org/wiki/Security/Projects/Bandit</a>), and browseable code is at <a href="http://git.openstack.org/cgit/stackforge/bandit/" rel="nofollow">http://git.openstack.org/cgit/stackforge/bandit/</a>.<p>We'd love to hear about people who are using this - feedback and suggestions welcome.