Merge "Adds Safety dependency vulnerability checks"
This commit is contained in:
commit
4d3e9d171b
|
@ -13,3 +13,4 @@ hacking==1.1.0
|
||||||
|
|
||||||
# Security
|
# Security
|
||||||
bandit==1.6.0
|
bandit==1.6.0
|
||||||
|
safety==1.8.5
|
||||||
|
|
8
tox.ini
8
tox.ini
|
@ -35,6 +35,7 @@ deps =
|
||||||
commands =
|
commands =
|
||||||
bash -c "{toxinidir}/tools/gate/whitespace-linter.sh"
|
bash -c "{toxinidir}/tools/gate/whitespace-linter.sh"
|
||||||
bandit -r pegleg -n 5
|
bandit -r pegleg -n 5
|
||||||
|
safety check -r requirements.txt --bare
|
||||||
flake8 {toxinidir}/pegleg
|
flake8 {toxinidir}/pegleg
|
||||||
whitelist_externals =
|
whitelist_externals =
|
||||||
bash
|
bash
|
||||||
|
@ -53,6 +54,13 @@ whitelist_externals =
|
||||||
basepython = python3
|
basepython = python3
|
||||||
commands = bandit -r pegleg -n 5
|
commands = bandit -r pegleg -n 5
|
||||||
|
|
||||||
|
[testenv:safety]
|
||||||
|
deps =
|
||||||
|
safety
|
||||||
|
commands =
|
||||||
|
safety check -r {toxinidir}/requirements.txt --full-report
|
||||||
|
safety check -r {toxinidir}/test-requirements.txt --full-report
|
||||||
|
|
||||||
[testenv:cover]
|
[testenv:cover]
|
||||||
basepython = python3
|
basepython = python3
|
||||||
deps =
|
deps =
|
||||||
|
|
Loading…
Reference in New Issue