Description
Is your feature request related to a problem? Please describe.
Another SAST for Golang named Gosec has a feature to suggest code fixes using an AI/LLM. It would be nice to have the same for Bandit.
Describe the solution you'd like
We could take a similar approach to Gosec by working with an external API or something different. Needs more investigation on what would be best for Bandit.
Describe alternatives you've considered
The alternative is for the code fix suggestions be provided based on the analysis. This can be done without any dependency on an AI, but may suggest incorrect code or even results that break code.
See:
#439
Additional context
https://github.com/securego/gosec?tab=readme-ov-file#auto-fixing-vulnerabilities
Love this idea? Give it a 👍. We prioritize fulfilling features with the most 👍.