Merge "Add a bandit environment to tox"
This commit is contained in:
commit
d4b3d60789
|
@ -13,3 +13,4 @@ oslotest>=1.10.0 # Apache-2.0
|
|||
testrepository>=0.0.18 # Apache-2.0/BSD
|
||||
testscenarios>=0.4 # Apache-2.0/BSD
|
||||
testtools>=1.4.0 # MIT
|
||||
bandit>=1.0.1 # Apache-2.0
|
||||
|
|
16
tox.ini
16
tox.ini
|
@ -14,7 +14,21 @@ deps = -r{toxinidir}/requirements.txt
|
|||
commands = python setup.py testr --slowest --testr-args='{posargs}'
|
||||
|
||||
[testenv:pep8]
|
||||
commands = flake8
|
||||
commands =
|
||||
flake8
|
||||
bandit -r castellan -x tests -s B105,B106,B107,B607
|
||||
|
||||
[testenv:bandit]
|
||||
# This command runs the bandit security linter against the castellan
|
||||
# codebase minus the tests directory. Some tests are being excluded to
|
||||
# reduce the number of positives before a team inspection, and to ensure a
|
||||
# passing gate job for initial addition. The excluded tests are:
|
||||
# B105-B107: hardcoded password checks - likely to generate false positives
|
||||
# in a gate environment
|
||||
# B607: start process with a partial path - this should be a project level
|
||||
# decision
|
||||
commands =
|
||||
bandit -r castellan -x tests -s B105,B106,B107,B607
|
||||
|
||||
[testenv:venv]
|
||||
commands = {posargs}
|
||||
|
|
Loading…
Reference in New Issue