Blacklist Bandit 1.6.0 due to directory exclusion bug

There is a regression bug in Bandit 1.6.0 that causes the exclusions to get ignored. Also allow jsonschema higher than 3, as this is no longer allowed and causes the requirement check to fail. Change-Id: I464b35f045aec6d22bfee9b35e229b02ee676280
2019-05-09 19:50:30 -07:00 · 2019-05-09 19:50:30 -07:00 · c16478eb2e
parent 9214a42a8e
commit c16478eb2e
2 changed files with 2 additions and 2 deletions
--- a/requirements.txt
+++ b/requirements.txt
@ -7,7 +7,7 @@ eventlet!=0.18.3,!=0.20.1,>=0.18.2 # MIT
 Flask!=0.11,>=0.10 # BSD
 greenlet>=0.4.10 # MIT
 Jinja2>=2.10 # BSD License (3 clause)
-jsonschema<3.0.0,>=2.6.0 # MIT
+jsonschema>=2.6.0 # MIT
 keystoneauth1>=3.4.0 # Apache-2.0
 keystonemiddleware>=4.17.0 # Apache-2.0
 netaddr>=0.7.18 # BSD
--- a/test-requirements.txt
+++ b/test-requirements.txt
@ -15,7 +15,7 @@ testscenarios>=0.4 # Apache-2.0/BSD
 WebTest>=2.0.27 # MIT
 tempest>=17.1.0 # Apache-2.0
 # Bandit security code scanner
-bandit>=1.1.0 # Apache-2.0
+bandit!=1.6.0,>=1.1.0 # Apache-2.0
 zake>=0.1.6 # Apache-2.0
 doc8>=0.6.0 # Apache-2.0
 Pygments>=2.2.0 # BSD license