openstack/os-brick
Code Issues Proposed changes

Enable bandit runs for tox

Browse Source 
This patch adds tox settings for running tox -ebandit
to look at potential security issues.

Current issues:
  scaleio connector disables SSL cert verification.

Change-Id: I79bec423a051eb12ab53042840a519bd4a77b4da
This commit is contained in:
Hemna
2020-09-18 09:19:00 -04:00
committed by Eric Harney
parent 4baa502ec8
commit eb566ce245
2 changed files with 5 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

1
test-requirements.txt
View File

@@ -15,3 +15,4 @@ castellan>=3.7.0 # Apache-2.0
pycodestyle==2.6.0 # MIT
doc8>=0.8.1 # Apache-2.0
fixtures>=3.0.0 # Apache-2.0/BSD
bandit>=1.6.0,<1.7.0 # Apache-2.0

4
tox.ini
View File

@@ -50,6 +50,10 @@ envdir = {toxworkdir}/pep8
commands =
{toxinidir}/tools/fast8.sh
[testenv:bandit]
deps = -r{toxinidir}/test-requirements.txt
commands: bandit -r os_brick -x os_brick/tests -n5
[testenv:pylint]
deps =
-c{env:TOX_CONSTRAINTS_FILE:https://releases.openstack.org/constraints/upper/master}