From d196375ae488357312903b114041bb269e1eaded Mon Sep 17 00:00:00 2001
From: rajeswari1301 <159857629+rajeswari1301@users.noreply.github.com>
Date: Thu, 12 Mar 2026 22:48:48 -0700
Subject: [PATCH 1/2] changed branch to add_bandid_13

---
 .github/workflows/unittests.yml | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/.github/workflows/unittests.yml b/.github/workflows/unittests.yml
index b196430a..c138c77b 100644
--- a/.github/workflows/unittests.yml
+++ b/.github/workflows/unittests.yml
@@ -11,4 +11,5 @@ jobs:
     runs-on: ubuntu-latest
     name: Run python only unit tests
     steps:
-      - uses: SuffolkLITLab/ALActions/pythontests@main
+      - uses: SuffolkLITLab/ALActions/pythontests@add_bandid_13
+      

From 666eca23529f39500f4c9e76ddf76e793d2c06f4 Mon Sep 17 00:00:00 2001
From: rajeswari1301 <159857629+rajeswari1301@users.noreply.github.com>
Date: Thu, 12 Mar 2026 23:00:33 -0700
Subject: [PATCH 2/2] Addressed bandit high severity that this is intentional
 and not a security vulnerability

---
 docassemble/AssemblyLine/sessions.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/docassemble/AssemblyLine/sessions.py b/docassemble/AssemblyLine/sessions.py
index 3f2bbe8d..03de9857 100644
--- a/docassemble/AssemblyLine/sessions.py
+++ b/docassemble/AssemblyLine/sessions.py
@@ -1714,7 +1714,7 @@ def update_session_metadata(
 
     # 2) Derive two signed 32‑bit ints from MD5(session_id|filename|tags)
     key_string = f"{session_id}|{filename}|{metadata_key_name}"
-    digest = hashlib.md5(key_string.encode("utf-8")).digest()
+    digest = hashlib.md5(key_string.encode("utf-8"), usedforsecurity=False).digest()
     high_u32, low_u32 = struct.unpack(">II", digest[:8])
 
     def to_signed_32(x: int) -> int: