Bump bandit

Use a more recent version because why not. Change-Id: I41538fd85956780250e3b7440130381151991b9c Signed-off-by: Stephen Finucane <sfinucan@redhat.com>
2022-04-05 17:23:07 +01:00 · 2022-04-05 17:23:07 +01:00 · 03dcc3c79a
parent 723513a9d9
commit 03dcc3c79a
2 changed files with 1 additions and 5 deletions
--- a/requirements.txt
+++ b/requirements.txt
@ -1,7 +1,3 @@
-# The order of packages is significant, because pip processes them in the order
-# of appearance. Changing the order has an impact on the overall integration
-# process, which may cause wedges in the gate later.
-
 pbr!=2.1.0,>=2.0.0 # Apache-2.0

 futurist>=1.2.0 # Apache-2.0
--- a/test-requirements.txt
+++ b/test-requirements.txt
@ -26,7 +26,7 @@ coverage!=4.4,>=4.0 # Apache-2.0
 pyngus>=2.2.0 # Apache-2.0

 # Bandit security code scanner
-bandit>=1.6.0,<1.7.0 # Apache-2.0
+bandit>=1.7.0,<1.8.0 # Apache-2.0

 eventlet>=0.23.0 # MIT
 greenlet>=0.4.15 # MIT