Bandit Report

try_except_pass: Try, Except, Pass detected.
Test ID: B110
Severity: LOW
Confidence: HIGH
CWE: CWE-703
File: /custom_nodes/ComfyUI_FizzNodes/ScheduledNodes.py
Line number: 841
More info: https://bandit.readthedocs.io/en/1.7.9/plugins/b110_try_except_pass.html

837	            else:
838	                x: int = int(s.strip()) - 1
839	                if x < len_first_dim:
840	                    selected_index.append(x)
841	        except:
842	            pass
843	
844	    if selected_index:
845	        print(f"ImageSelector: selected: {len(selected_index)} images")

blacklist: Consider possible security implications associated with the subprocess module.
Test ID: B404
Severity: LOW
Confidence: HIGH
CWE: CWE-78
File: /custom_nodes/ComfyUI_FizzNodes/__init__.py
Line number: 3
More info: https://bandit.readthedocs.io/en/1.7.9/blacklists/blacklist_imports.html#b404-import-subprocess

1	# Made by Davemane42#0042 for ComfyUI
2	import os
3	import subprocess
4	import importlib.util
5	import sys
6	import filecmp
7	import shutil
8

subprocess_popen_with_shell_equals_true: subprocess call with shell=True identified, security issue.
Test ID: B602
Severity: HIGH
Confidence: HIGH
CWE: CWE-78
File: /custom_nodes/ComfyUI_FizzNodes/__init__.py
Line number: 51
More info: https://bandit.readthedocs.io/en/1.7.9/plugins/b602_subprocess_popen_with_shell_equals_true.html

47	    if spec is None:
48	        print(f"Installing {package}...")
49	        command = f'"{python}" -m pip install {package}'
50	  
51	        result = subprocess.run(command, stdout=subprocess.PIPE, stderr=subprocess.PIPE, shell=True, env=os.environ)
52	
53	        if result.returncode != 0:
54	            print(f"Couldn't install\nCommand: {command}\nError code: {result.returncode}")