pre-commit: Integrate bandit

We also remove these unnecessary linter dependencies from
test-requirements.txt.

Co-Authored-By: Stephen Finucane <sfinucan@redhat.com>
Change-Id: I36a6469231a8ce78f06c9b858d35c161f4d22799
This commit is contained in:
Takashi Kajinami 2024-02-07 12:03:18 +09:00
parent 7bd342040c
commit cfdbc26529
3 changed files with 6 additions and 9 deletions

View File

@ -23,3 +23,8 @@ repos:
hooks:
- id: hacking
additional_dependencies: []
- repo: https://github.com/PyCQA/bandit
rev: 1.7.6
hooks:
- id: bandit
args: ['-x', 'tests', '-s', 'B314,B405']

View File

@ -7,8 +7,3 @@ eventlet!=0.18.3,!=0.20.1,>=0.18.2 # MIT
greenlet>=0.4.15 # MIT
coverage!=4.4,>=4.0 # Apache-2.0
# Bandit security code scanner
bandit>=1.7.0,<1.8.0 # Apache-2.0
pre-commit>=2.6.0 # MIT

View File

@ -13,12 +13,9 @@ commands = stestr run --slowest {posargs}
[testenv:pep8]
deps =
-c{env:TOX_CONSTRAINTS_FILE:https://releases.openstack.org/constraints/upper/master}
-r{toxinidir}/test-requirements.txt
pre-commit
commands =
pre-commit run -a
# Run security linter
bandit -r oslo_reports tests -n5 --skip B314,B405
[testenv:venv]
commands = {posargs}