Adding basic bandit config

This change adds a basic bandit config for sahara. It can be invoked by running the tox environment for bandit; `$ tox -e bandit`. The tests are based on the default bandit configuration with a few blacklist tests as well. This is intended as a starting point for using bandit with sahara and it should be revisited to improve the testing as more is learned about the specific needs of the sahara code base. * adding bandit.yaml configuration * adding bandit to tox.ini * adding a requirements file for bandit tox environment Change-Id: I4b03f04dca80b146fdbae31a6b6011e78380d665
2015-04-24 18:17:35 -04:00 · 2015-04-24 18:17:35 -04:00 · a71d0af683
parent 11db8689bb
commit a71d0af683
1 changed files with 4 additions and 0 deletions
--- a/tox.ini
+++ b/tox.ini
@ -89,6 +89,10 @@ commands = pip-missing-reqs -d --ignore-file=sahara/tests/* sahara
 # http://docs.openstack.org/developer/oslotest/features.html#debugging-with-oslo-debug-helper
 commands = oslo_debug_helper {posargs}

+[testenv:bandit]
+deps = -r{toxinidir}/test-requirements-bandit.txt
+commands = bandit -c bandit.yaml -r sahara -n5 -p sahara_default
+
 [flake8]
 show-source = true
 builtins = _