These tests were broken, a previous patch failed to fix them
(referenced old docs). This patch actually fixes them and adds
nosec comments as needed. Note that 'hardcoded_password_default'
is disabled until some issues are resolved.
Change-Id: I0c6977b48fd824cfdb13e86086476a4acd945585
There have been several changes in Bandit since the Sahara profile
was implemented. This commit brings the Sahara config up to date
by:
- changing info to severity to low
- adding a couple of plugin configs - currently unused
It should be noted that upstream Bandit config has recently had
some changes to make it more organized and readable. It's
probably worth implementing a new profile for Sahara, based on
upstream Bandit's example profile, soon.
Change-Id: I37d62708282a4aa830d84e2a1749ac53d3923a0a
This change adds a basic bandit config for sahara. It can be invoked by
running the tox environment for bandit; `$ tox -e bandit`. The tests are
based on the default bandit configuration with a few blacklist tests as
well. This is intended as a starting point for using bandit with sahara
and it should be revisited to improve the testing as more is learned
about the specific needs of the sahara code base.
* adding bandit.yaml configuration
* adding bandit to tox.ini
* adding a requirements file for bandit tox environment
Change-Id: I4b03f04dca80b146fdbae31a6b6011e78380d665
zhufl