319fd1a532
The latest version of bandit has broken directory exclusion, so multiple test files are getting flagged. This change blocks version 1.6.0 while this issue is fixed for 1.6.1. This change also caps sphinx at <2.0.0 for python version 2.7. This also updates the keyring version. Change-Id: I69a86ef21791698e4dd749fe5640fcdc7df1b0fc
25 lines
803 B
Plaintext
25 lines
803 B
Plaintext
# The order of packages is significant, because pip processes them in the order
|
|
# of appearance. Changing the order has an impact on the overall integration
|
|
# process, which may cause wedges in the gate later.
|
|
|
|
hacking>=1.1.0,<1.2.0 # Apache-2.0
|
|
flake8-docstrings==0.2.1.post1 # MIT
|
|
|
|
coverage!=4.4,>=4.0 # Apache-2.0
|
|
fixtures>=3.0.0 # Apache-2.0/BSD
|
|
keyring>=5.5.1,<19.0.0;python_version=='2.7' # MIT/PSF
|
|
keyring>=5.5.1;python_version>='3.4' # MIT/PSF
|
|
lxml!=3.7.0,>=3.4.1 # BSD
|
|
mock>=2.0.0 # BSD
|
|
oauthlib>=0.6.2 # BSD
|
|
oslotest>=3.2.0 # Apache-2.0
|
|
requests-mock>=1.2.0 # Apache-2.0
|
|
tempest>=17.1.0 # Apache-2.0
|
|
stestr>=2.0.0 # Apache-2.0
|
|
testresources>=2.0.0 # Apache-2.0/BSD
|
|
testscenarios>=0.4 # Apache-2.0/BSD
|
|
testtools>=2.2.0 # MIT
|
|
|
|
# Bandit security code scanner
|
|
bandit!=1.6.0,>=1.1.0 # Apache-2.0
|