683db4ae6c
There's a regression[0] in bandit 1.6.0 which causes bandit to stop respecting excluded directories, and our tests throw a bunch of violations. Blacklist this version, but allow newer versions as there is already a pull request[1] to fix it, and I expect it will be included in the next release. [0] https://github.com/PyCQA/bandit/issues/488 [1] https://github.com/PyCQA/bandit/pull/489 Change-Id: I4429614a57fb512fe2bfdf0686c3eff0adc2a2f4
25 lines
860 B
Plaintext
25 lines
860 B
Plaintext
# The order of packages is significant, because pip processes them in the order
|
|
# of appearance. Changing the order has an impact on the overall integration
|
|
# process, which may cause wedges in the gate later.
|
|
bandit!=1.6.0,>=1.1.0 # Apache-2.0
|
|
bashate>=0.5.1 # Apache-2.0
|
|
beautifulsoup4>=4.6.0 # MIT
|
|
coverage!=4.4,>=4.0 # Apache-2.0
|
|
ddt>=1.0.1 # MIT
|
|
extras>=1.0.0 # MIT
|
|
graphviz!=0.5.0,>=0.4 # MIT License
|
|
hacking>=1.1.0,<1.2.0 # Apache-2.0
|
|
oslo.log>=3.36.0 # Apache-2.0
|
|
oslotest>=3.2.0 # Apache-2.0
|
|
PrettyTable<0.8,>=0.7.1 # BSD
|
|
PyYAML>=3.10 # MIT
|
|
python-barbicanclient>=4.0.0 # Apache-2.0
|
|
python-heatclient>=1.10.0 # Apache-2.0
|
|
python-neutronclient>=6.3.0 # Apache-2.0
|
|
python-openstackclient>=3.12.0 # Apache-2.0
|
|
python-swiftclient>=3.2.0 # Apache-2.0
|
|
pytz>=2013.6 # MIT
|
|
stestr>=2.2.0 # Apache-2.0
|
|
testscenarios>=0.4 # Apache-2.0/BSD
|
|
testtools>=2.2.0 # MIT
|