Adding a few #nosec tags to prepare for Bandit usage

This commit adds a few #nosec tags for non-issues. I've examined the code and determined that these don't represent security issues so we should add a #nosec tag that tells Bandit not to find these issues in the future. Closes-Bug: #1577498 Change-Id: Ic37216c08442c700c64118c78cfb46e6cedd237c
2016-04-28 12:27:51 -05:00 · 2016-04-28 12:27:51 -05:00 · cc33c103d4
parent d9fc4c6f40
commit cc33c103d4
2 changed files with 3 additions and 2 deletions
--- a/kolla/cmd/build.py
+++ b/kolla/cmd/build.py
@ -473,7 +473,8 @@ class KollaWorker(object):
        kolla_version = version.version_info.cached_version_string()
        for path in self.docker_build_paths:
            template_name = "Dockerfile.j2"
-            env = jinja2.Environment(loader=jinja2.FileSystemLoader(path))
+            env = jinja2.Environment(  # nosec: not used to render HTML
+                loader=jinja2.FileSystemLoader(path))
            template = env.get_template(template_name)
            values = {'base_distro': self.base,
                      'base_distro_tag': self.base_tag,
--- a/setup.py
+++ b/setup.py
@ -21,7 +21,7 @@ import setuptools
 # solution from: http://bugs.python.org/issue15881#msg170215
 try:
    import multiprocessing  # noqa
-except ImportError:
+except ImportError:  # nosec : empty pass is expected behavior
    pass

 setuptools.setup(