From a71d0af683813d0b0069a68d836bd1cace4f9be6 Mon Sep 17 00:00:00 2001
From: Michael McCune <msm@redhat.com>
Date: Fri, 24 Apr 2015 18:17:35 -0400
Subject: [PATCH] Adding basic bandit config

This change adds a basic bandit config for sahara. It can be invoked by
running the tox environment for bandit; `$ tox -e bandit`. The tests are
based on the default bandit configuration with a few blacklist tests as
well. This is intended as a starting point for using bandit with sahara
and it should be revisited to improve the testing as more is learned
about the specific needs of the sahara code base.

* adding bandit.yaml configuration
* adding bandit to tox.ini
* adding a requirements file for bandit tox environment

Change-Id: I4b03f04dca80b146fdbae31a6b6011e78380d665
---
 tox.ini | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/tox.ini b/tox.ini
index 05765d3..26d4a61 100644
--- a/tox.ini
+++ b/tox.ini
@@ -89,6 +89,10 @@ commands = pip-missing-reqs -d --ignore-file=sahara/tests/* sahara
 # http://docs.openstack.org/developer/oslotest/features.html#debugging-with-oslo-debug-helper
 commands = oslo_debug_helper {posargs}
 
+[testenv:bandit]
+deps = -r{toxinidir}/test-requirements-bandit.txt
+commands = bandit -c bandit.yaml -r sahara -n5 -p sahara_default
+
 [flake8]
 show-source = true
 builtins = _