Adding basic bandit config
This change adds a basic bandit config for sahara. It can be invoked by running the tox environment for bandit; `$ tox -e bandit`. The tests are based on the default bandit configuration with a few blacklist tests as well. This is intended as a starting point for using bandit with sahara and it should be revisited to improve the testing as more is learned about the specific needs of the sahara code base. * adding bandit.yaml configuration * adding bandit to tox.ini * adding a requirements file for bandit tox environment Change-Id: I4b03f04dca80b146fdbae31a6b6011e78380d665
This commit is contained in:
parent
11db8689bb
commit
a71d0af683
4
tox.ini
4
tox.ini
|
@ -89,6 +89,10 @@ commands = pip-missing-reqs -d --ignore-file=sahara/tests/* sahara
|
|||
# http://docs.openstack.org/developer/oslotest/features.html#debugging-with-oslo-debug-helper
|
||||
commands = oslo_debug_helper {posargs}
|
||||
|
||||
[testenv:bandit]
|
||||
deps = -r{toxinidir}/test-requirements-bandit.txt
|
||||
commands = bandit -c bandit.yaml -r sahara -n5 -p sahara_default
|
||||
|
||||
[flake8]
|
||||
show-source = true
|
||||
builtins = _
|
||||
|
|
Loading…
Reference in New Issue