Replace blacklist_functions with blacklist_calls
The bandit security scan is currently skipping any check of blacklisted functions. The bandit plugin should be blacklist_calls and not blacklist_functions. Change-Id: I167220f5f8edcc450b5891f6396e164500504df5 Closes-Bug: #1460839
This commit is contained in:
Eric Brown
parent
82c99ad237
commit
f6cc12ba0d
|
|
@ -31,7 +31,7 @@ exclude_dirs:
|
|||
profiles:
|
||||
keystone_conservative:
|
||||
include:
|
||||
- blacklist_functions
|
||||
- blacklist_calls
|
||||
- blacklist_imports
|
||||
- request_with_no_cert_validation
|
||||
- exec_used
|
||||
|
|
@ -43,7 +43,7 @@ profiles:
|
|||
|
||||
keystone_verbose:
|
||||
include:
|
||||
- blacklist_functions
|
||||
- blacklist_calls
|
||||
- blacklist_imports
|
||||
- request_with_no_cert_validation
|
||||
- exec_used
|
||||
|
|
@ -55,7 +55,7 @@ profiles:
|
|||
- ssl_with_bad_version
|
||||
- ssl_with_bad_defaults
|
||||
|
||||
blacklist_functions:
|
||||
blacklist_calls:
|
||||
bad_name_sets:
|
||||
- pickle:
|
||||
qualnames: [pickle.loads, pickle.load, pickle.Unpickler,
|
||||
|
|
|
|||
Loading…
Reference in New Issue