[stable-only] Cap bandit to 1.6.2

The 1.6.3 [1] release has dropped support for py2 [2] so cap to 1.6.2 when using py2. [1] https://github.com/PyCQA/bandit/releases/tag/1.6.3 [2] https://github.com/PyCQA/bandit/pull/615 Closes-Bug: #1907438 Change-Id: I294d5350e2f418614e54ff7bdd47dff16bfdcdbc (cherry picked from commit 1f2326cd7c)
2020-12-09 12:38:03 +00:00 · 2020-12-09 12:38:03 +00:00 · cac096fcd6
parent db485392fc
commit cac096fcd6
1 changed files with 1 additions and 1 deletions
--- a/test-requirements.txt
+++ b/test-requirements.txt
@ -20,6 +20,6 @@ fixtures>=3.0.0 # Apache-2.0/BSD
 keystonemiddleware>=4.17.0 # Apache-2.0

 # Security checks
-bandit>=1.1.0 # Apache-2.0
+bandit>=1.1.0,<=1.6.2 # Apache-2.0

 docutils>=0.11  # OSI-Approved Open Source, Public Domain