pre-commit: Bump versions
... and use native hooks for bandit and hacking Change-Id: Iaafe890b48eb7607064b70f51253d38b3bd933aa
This commit is contained in:
Takashi Kajinami
parent
204c09bd37
commit
59f005d691
@ -1,15 +1,6 @@
|
|||||||
# We from the Oslo project decided to pin repos based on the
|
|
||||||
# commit hash instead of the version tag to prevend arbitrary
|
|
||||||
# code from running in developer's machines. To update to a
|
|
||||||
# newer version, run `pre-commit autoupdate` and then replace
|
|
||||||
# the newer versions with their commit hash.
|
|
||||||
|
|
||||||
default_language_version:
|
|
||||||
python: python3
|
|
||||||
|
|
||||||
repos:
|
repos:
|
||||||
- repo: https://github.com/pre-commit/pre-commit-hooks
|
- repo: https://github.com/pre-commit/pre-commit-hooks
|
||||||
rev: 9136088a246768144165fcc3ecc3d31bb686920a # v3.3.0
|
rev: v5.0.0
|
||||||
hooks:
|
hooks:
|
||||||
- id: trailing-whitespace
|
- id: trailing-whitespace
|
||||||
# Replaces or checks mixed line ending
|
# Replaces or checks mixed line ending
|
||||||
@ -27,13 +18,13 @@ repos:
|
|||||||
- id: debug-statements
|
- id: debug-statements
|
||||||
- id: check-yaml
|
- id: check-yaml
|
||||||
files: .*\.(yaml|yml)$
|
files: .*\.(yaml|yml)$
|
||||||
- repo: local
|
- repo: https://opendev.org/openstack/hacking
|
||||||
|
rev: 7.0.0
|
||||||
hooks:
|
hooks:
|
||||||
- id: flake8
|
- id: hacking
|
||||||
name: flake8
|
additional_dependencies: []
|
||||||
additional_dependencies:
|
- repo: https://github.com/PyCQA/bandit
|
||||||
- hacking>=6.1.0,<6.2.0
|
rev: 1.7.10
|
||||||
language: python
|
hooks:
|
||||||
entry: flake8
|
- id: bandit
|
||||||
files: '^.*\.py$'
|
args: ['-x', 'tests,benchmark', '--skip', 'B404']
|
||||||
exclude: '^(doc|releasenotes|tools)/.*$'
|
|
||||||
|
|||||||
@ -1,5 +1,3 @@
|
|||||||
hacking>=6.1.0,<6.2.0 # Apache-2.0
|
|
||||||
|
|
||||||
fixtures>=3.0.0 # Apache-2.0/BSD
|
fixtures>=3.0.0 # Apache-2.0/BSD
|
||||||
testtools>=2.2.0 # MIT
|
testtools>=2.2.0 # MIT
|
||||||
stestr>=2.0.0 # Apache-2.0
|
stestr>=2.0.0 # Apache-2.0
|
||||||
@ -9,8 +7,3 @@ oslotest>=3.2.0 # Apache-2.0
|
|||||||
|
|
||||||
# rootwrap daemon's client should be verified to run in eventlet
|
# rootwrap daemon's client should be verified to run in eventlet
|
||||||
eventlet>=0.18.2 # MIT
|
eventlet>=0.18.2 # MIT
|
||||||
|
|
||||||
# Bandit security code scanner
|
|
||||||
bandit>=1.7.0,<1.8.0 # Apache-2.0
|
|
||||||
|
|
||||||
pre-commit>=2.6.0 # MIT
|
|
||||||
|
|||||||
5
tox.ini
5
tox.ini
@ -16,12 +16,9 @@ commands =
|
|||||||
|
|
||||||
[testenv:pep8]
|
[testenv:pep8]
|
||||||
deps =
|
deps =
|
||||||
-c{env:TOX_CONSTRAINTS_FILE:https://releases.openstack.org/constraints/upper/master}
|
pre-commit>=2.6.0 # MIT
|
||||||
-r{toxinidir}/test-requirements.txt
|
|
||||||
commands =
|
commands =
|
||||||
pre-commit run -a
|
pre-commit run -a
|
||||||
# Run security linter
|
|
||||||
bandit -r oslo_rootwrap tests -n5 --skip B404
|
|
||||||
|
|
||||||
[testenv:cover]
|
[testenv:cover]
|
||||||
deps = {[testenv]deps}
|
deps = {[testenv]deps}
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user