Skip to content
Critiq Docs

Search docs

Search documentation pages and rules

security.network

Avoid binding Python services to all interfaces

Python network services should avoid explicit binds to `0.0.0.0` or `::` unless public exposure is intentional and controlled.

#Metadata

Rule ID
py.security.bind-all-interfaces
Severity
medium
Confidence
0.9
Languages
python
Presets
security, strict
Stability
stable
Applies to
block
Tags
exposure, network, python, rules-catalog, security

#Why it matters

Binding every interface can unintentionally expose internal services beyond expected trust boundaries.

#Remediation

Prefer loopback or an explicit interface bind unless broad exposure is required and defended by network controls.

#Repository path

The generated metadata points to critiq-rules/libs/rules/catalog/rules/python/py.security.bind-all-interfaces.rule.yaml.

Back to directoryOpen rule in repository