a5381cdd2f
This patch removes the bandit.yaml and just uses whatever Bandit defaults with in the scan. This cuts down on the maintenance of the burdensome bandit.yaml file. This patch also changes the severity level of the scan to just medium and high issues. Here are the results without the -ll to exclude low severity: http://paste.openstack.org/show/489898/ Change-Id: Ia063db516175f518cfa1c68902b8b74734f294c0
60 lines
1.3 KiB
INI
60 lines
1.3 KiB
INI
[tox]
|
|
minversion = 1.6
|
|
envlist = py34,py27,pypy,pep8
|
|
skipsdist = True
|
|
|
|
[testenv]
|
|
usedevelop = True
|
|
install_command = pip install -U {opts} {packages}
|
|
whitelist_externals = find
|
|
setenv =
|
|
VIRTUAL_ENV={envdir}
|
|
deps = -r{toxinidir}/requirements.txt
|
|
-r{toxinidir}/test-requirements.txt
|
|
commands =
|
|
find . -type f -name "*.pyc" -delete
|
|
python setup.py testr --slowest --testr-args='{posargs}'
|
|
|
|
[testenv:bandit]
|
|
deps = -r{toxinidir}/test-requirements.txt
|
|
commands = bandit -r magnumclient -x tests -n5 -ll
|
|
|
|
[testenv:pypy]
|
|
deps = setuptools<3.2
|
|
-r{toxinidir}/requirements.txt
|
|
-r{toxinidir}/test-requirements.txt
|
|
|
|
[testenv:debug]
|
|
commands = oslo_debug_helper -t magnumclient/tests {posargs}
|
|
|
|
[testenv:debug-py27]
|
|
basepython = python2.7
|
|
commands = oslo_debug_helper -t magnumclient/tests {posargs}
|
|
|
|
[testenv:debug-py34]
|
|
basepython = python3.4
|
|
commands = oslo_debug_helper -t magnumclient/tests {posargs}
|
|
|
|
[testenv:pep8]
|
|
commands =
|
|
flake8
|
|
# Run security linter
|
|
bandit -r magnumclient -x tests -n5 -ll
|
|
|
|
[testenv:venv]
|
|
commands = {posargs}
|
|
|
|
[testenv:cover]
|
|
commands = ./coverage.sh {posargs}
|
|
|
|
[flake8]
|
|
# E123, E125 skipped as they are invalid PEP-8.
|
|
|
|
show-source = True
|
|
ignore = E123,E125
|
|
builtins = _
|
|
exclude=.venv,.git,.tox,dist,doc,*openstack/common*,*lib/python*,*egg,build
|
|
|
|
[hacking]
|
|
import_exceptions = magnumclient.openstack.common._i18n
|