Add bandit python security scanning to pep8

This change adds bandit python security code scanning to the pep8 zuul check. Change-Id: I8b6c52bd3fae87c5b49f3cde8bb9e63526155973
2018-08-21 15:51:08 -05:00 · 2018-08-21 15:51:08 -05:00 · 0f73e7ca9f
parent b1e9d7a693
commit 0f73e7ca9f
2 changed files with 7 additions and 2 deletions
--- a/test-requirements.txt
+++ b/test-requirements.txt
@ -8,3 +8,4 @@ coverage!=4.4,>=4.0 # Apache-2.0
 nose>=1.3.7 # LGPL
 nosexcover>=1.0.10 # BSD
 oslotest>=3.2.0 # Apache-2.0
+bandit>=1.5 # Apache-2.0
--- a/tox.ini
+++ b/tox.ini
@ -22,8 +22,12 @@ commands =

 [testenv:pep8]
 basepython = python3
-commands = flake8 {posargs}
-           check-uuid --package patrole_tempest_plugin.tests.api
+deps =
+    -r{toxinidir}/test-requirements.txt
+commands =
+    flake8 {posargs}
+    bandit -r patrole_tempest_plugin -x patrole_tempest_plugin/tests -n 5
+    check-uuid --package patrole_tempest_plugin.tests.api

 [testenv:uuidgen]
 basepython = python3