60740282c9
This change adds a basic bandit config for cloudkitty. It can be invoked
by running the tox environment for bandit;
tox -e bandit
These changes also fix potential security issues find during bandit checks.
- binding to all interface: remove useless host_ip option to avoid issue
- hash function issue: switch from sha1 to sha512
- use of exec: can't be removed for moment so using #nosec comment
Change-Id: Iae7d7604457345fe6d482cf48311c9b75fdde947
24 lines
758 B
Plaintext
24 lines
758 B
Plaintext
# The order of packages is significant, because pip processes them in the order
|
|
# of appearance. Changing the order has an impact on the overall integration
|
|
# process, which may cause wedges in the gate later.
|
|
|
|
# hacking should be first
|
|
hacking!=0.13.0,<0.14,>=0.12.0 # Apache-2.0
|
|
|
|
coverage>=3.6,!=4.4 # Apache-2.0
|
|
kombu>=4.0.0,!=4.0.2 # BSD
|
|
ddt>=1.0.1 # MIT
|
|
gabbi>=1.26.1 # Apache-2.0
|
|
testscenarios>=0.4 # Apache-2.0/BSD
|
|
stestr>=2.0.0 # Apache-2.0
|
|
mock>=1.2 # BSD
|
|
sphinx>=1.6.2,!=1.6.6,!=1.6.7 # BSD
|
|
openstackdocstheme>=1.20.0 # Apache-2.0
|
|
oslotest>=1.10.0 # Apache-2.0
|
|
sphinxcontrib-httpdomain>=1.6.0 # BSD
|
|
sphinxcontrib-pecanwsme>=0.8 # Apache-2.0
|
|
reno>=1.8.0 # Apache-2.0
|
|
doc8>=0.6.0 # Apache-2.0
|
|
Pygments>=2.2.0 # BSD license
|
|
bandit>=1.1.0 # Apache-2.0
|