PyCQA Bandit by PyCQA
Bandit is a tool designed to find common security issues in Python code.
linterbanditsecurity-toolssecurity-scannersecuritystatic-code-analysispython
Verdict 74/100 health $4.13/mo cheapest, hetzner 2/5 setup difficulty Last release 2 months ago
Health score
74 /100
6-dim composite
Self-hosts from
$4.13 /mo
hetzner · CAX11
Difficulty
2 /5
Docker + read README
GitHub stars
8.0k
756 forks
Health score breakdown
6-dimension composite. See methodology for formula and weights.
activity
63
maturity
100
community
84
security
85
sustainability
100
adoption
35
Adoption signals
Real-world usage data, pulled from each registry. The bigger the numbers, the more battle-tested the project.
| Signal | Value | Source |
|---|---|---|
| GitHub stars | 8.0k | github.com/PyCQA/bandit |
| GitHub forks | 756 | github.com/PyCQA/bandit |
| Docker Hub pulls | 0 | hub.docker.com / pycqa |
| PYPI downloads (last month) | 21795k | bandit |
Release & maintenance
Is this project actively maintained, or about to die? Check the recency of last commit and last release.
| Project age | 8.0 years | since Apr 2018 |
| Last commit | 23 days ago | Apr 14, 2026 |
| Releases shipped | 29 | last: 2 months ago |
| Security policy | SECURITY.md | declared by maintainers |
| Funding links | 3 | declared by maintainers |
Self-hosting cost across providers
Detected requirements: 4GB RAM, 40GB disk minimum. Cheapest plan per provider that meets the requirement.
| Provider | Plan | Specs | Monthly | |
|---|---|---|---|---|
| hetzner | CAX11 | 2c · 4GB · 40GB | $4.13 USD | Deploy → |
| vultr | VC2 | 1c · 1GB · 25GB | $5 USD | Deploy → |
| linode | Nanode 1GB | 1c · 1GB · 25GB | $5.12 USD | Deploy → |
| digitalocean | Basic Regular 1GB | 1c · 1GB · 25GB | $6 USD | Deploy → |
What people say on Hacker News
Ready to self-host PyCQA Bandit?
Spin up a hetzner CAX11 (4GB RAM, 40GB disk) for $4.13/mo and follow the project's official install docs.
Data last refreshed May 7, 2026.
Similar open-source projects
Projects in our directory that replace the same SaaS or share topics with PyCQA Bandit.
eslint
Find and fix problems in your JavaScript code.
ruff
An extremely fast Python linter and code formatter, written in Rust.
mitmproxy
An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers.
infisical
Infisical is the open-source platform for secrets, certificates, and privileged access management.
pylint
It's not just a linter that annoys you!
biome
A toolchain for web projects, aimed to provide functionalities to maintain them. Biome offers formatter and linter, usab