[stable-only] Cap bandit to 1.6.2
The 1.6.3 [1] release has dropped support for py2 [2] but the release
is faulty and pip still picks it up for py2 [3][4], so cap to 1.6.2
when using py2.
sphinx and elasticsearch requirement needed to be updated to make
requirements-check job pass.
[1] https://github.com/PyCQA/bandit/releases/tag/1.6.3
[2] https://github.com/PyCQA/bandit/pull/615
[3] https://github.com/PyCQA/bandit/issues/663
[4] https://github.com/PyCQA/bandit/issues/665
Change-Id: I8762bad8821868c97af8114e49f51b6383df3e5c
(cherry picked from commit 30ffa27873
)
This commit is contained in:
parent
b7ce08f35f
commit
2dc5a92894
|
@ -7,15 +7,16 @@ stestr>=2.0.0 # Apache-2.0
|
|||
testtools>=2.2.0 # MIT
|
||||
|
||||
openstackdocstheme>=1.18.1 # Apache-2.0
|
||||
sphinx>=1.6.2 # BSD
|
||||
sphinx!=1.6.6,!=1.6.7,>=1.6.2,<2.0.0;python_version=='2.7' # BSD
|
||||
sphinx!=1.6.6,!=1.6.7,>=1.6.2;python_version>='3.4' # BSD
|
||||
|
||||
# Bandit security code scanner
|
||||
bandit>=1.1.0 # Apache-2.0
|
||||
bandit>=1.1.0,<=1.6.2 # Apache-2.0
|
||||
|
||||
pymongo!=3.1,>=3.0.2 # Apache-2.0
|
||||
|
||||
# Elasticsearch python client
|
||||
elasticsearch>=2.0.0,<=3.0.0 # Apache-2.0
|
||||
elasticsearch>=2.0.0,<3.0.0 # Apache-2.0
|
||||
|
||||
# Redis python client
|
||||
redis>=2.10.0 # MIT
|
||||
|
|
Loading…
Reference in New Issue