From 1a6eb97e4fcc91d0d13c8ead2e5107f16427a808 Mon Sep 17 00:00:00 2001
From: Lee Yarwood <lyarwood@redhat.com>
Date: Wed, 9 Dec 2020 12:38:03 +0000
Subject: [PATCH] [stable-only] Cap bandit to 1.6.2

The 1.6.3 [1] release has dropped support for py2 [2] so cap to 1.6.2
when using py2.

[1] https://github.com/PyCQA/bandit/releases/tag/1.6.3
[2] https://github.com/PyCQA/bandit/pull/615

Conflicts:
  test-requirements.txt

Closes-Bug: #1907438
Change-Id: I294d5350e2f418614e54ff7bdd47dff16bfdcdbc
(cherry picked from commit 1f2326cd7cf5f8e32a55091f976f917093a0bede)
(cherry picked from commit cac096fcd64213f1e2cfa0848ca9af40a89fc952)
(cherry picked from commit b2f96a1f9361c0245faca24702d2843d53e10175)
---
 test-requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/test-requirements.txt b/test-requirements.txt
index 968571a236..8d41f5d382 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -18,4 +18,4 @@ python-keystoneclient!=2.1.0,>=2.0.0 # Apache-2.0
 reno>=1.8.0  # Apache-2.0
 
 # Security checks
-bandit>=1.1.0 # Apache-2.0
+bandit>=1.1.0,<=1.6.2 # Apache-2.0