openstack/python-keystoneclient
Code Issues Proposed changes

Follow bandit B105: hardcoded_password_string

Browse Source 
tox -e bandit failing due to the string 'token'
in [1]. According to the bandit 105 any password
assigned to a string should not contain any of the
variables in [2]

[1]https://github.com/openstack/python-keystoneclient/blob/master/keystoneclient/common/cms.py#L41
[2]https://bandit.readthedocs.io/en/latest/plugins/b105_hardcoded_password_string.html

Change-Id: I822e1195532df2b701f10087cabceda458211986
This commit is contained in:
Vishakha Agarwal
2019-06-25 14:09:47 +05:30
parent 73436a76ba
commit 7b7d81d09e
1 changed files with 2 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

3
keystoneclient/common/cms.py
View File

@@ -38,7 +38,8 @@ PKI_ASN1_PREFIX = 'MII'
PKIZ_PREFIX = 'PKIZ_'
PKIZ_CMS_FORM = 'DER'
PKI_ASN1_FORM = 'PEM'
DEFAULT_TOKEN_DIGEST_ALGORITHM = 'sha256'
# Adding nosec since this fails bandit B105, 'Possible hardcoded password'.
DEFAULT_TOKEN_DIGEST_ALGORITHM = 'sha256' # nosec
# The openssl cms command exits with these status codes.