From 23116448277405d5f92b00105a666cd1d95e900a Mon Sep 17 00:00:00 2001
From: yatinkarel <ykarel@redhat.com>
Date: Tue, 12 Apr 2022 12:16:45 +0530
Subject: [PATCH] Also add B324 to bandit skip list for python3.9+

For Python>=3.9 we also need to skip B324[1] for
hashlib.sha1 usage. For older python3 versions
B303[2] was enough.

[1] https://github.com/PyCQA/bandit/commit/c4372a09
[2] https://review.opendev.org/c/openstack/neutron/+/592884

Closes-Bug: rhbz#2074383
Change-Id: If4e7e550fd63414226098af16d1cc155aaa6c57a
(cherry picked from commit 9b66e81d2eea872bee844c0f343bce0238eb5b41)
---
 tox.ini | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/tox.ini b/tox.ini
index f8e6dfe4efc..234e2f0de88 100644
--- a/tox.ini
+++ b/tox.ini
@@ -210,10 +210,11 @@ import_exceptions = neutron._i18n
 envdir = {toxworkdir}/lint
 deps = {[testenv:pep8]deps}
 # B104: Possible binding to all interfaces
-# B303: prohibit list calls: md5, sha1
+# B303: prohibit list calls: md5, sha1 for python<3.9
 # B311: Standard pseudo-random generators are not suitable for security/cryptographic purpose
+# B324: prohibit list calls: md5, sha1 for python>=3.9
 # B604: any_other_function_with_shell_equals_true
-commands = bandit -r neutron -x tests -n5 -s B104,B303,B311,B604
+commands = bandit -r neutron -x tests -n5 -s B104,B303,B311,B324,B604
 
 [testenv:bashate]
 envdir = {toxworkdir}/lint