From fbf6c0691a66601352165ab919f3036c77dced30 Mon Sep 17 00:00:00 2001 From: Jamie Finnigan Date: Mon, 8 Sep 2014 11:34:34 -0700 Subject: [PATCH] Adding Bandit project to StackForge This adds Bandit, a Python AST-based static analyzer from OpenStack Security Group (https://github.com/chair6/bandit), to StackForge. Change-Id: I0e1892c1a80aefcc18fc677d758ec3afec571073 --- .../gerritbot/files/gerritbot_channel_config.yaml | 1 + .../files/gerrit/acls/stackforge/bandit.config | 14 ++++++++++++++ .../openstack_project/files/review.projects.yaml | 3 +++ modules/openstack_project/files/zuul/layout.yaml | 5 +++++ 4 files changed, 23 insertions(+) create mode 100644 modules/openstack_project/files/gerrit/acls/stackforge/bandit.config diff --git a/modules/gerritbot/files/gerritbot_channel_config.yaml b/modules/gerritbot/files/gerritbot_channel_config.yaml index 9477e795fc..53b9baf47a 100644 --- a/modules/gerritbot/files/gerritbot_channel_config.yaml +++ b/modules/gerritbot/files/gerritbot_channel_config.yaml @@ -856,6 +856,7 @@ openstack-security: - x-vrif-minus-2 projects: - openstack/security-doc + - stackforge/bandit branches: - master diff --git a/modules/openstack_project/files/gerrit/acls/stackforge/bandit.config b/modules/openstack_project/files/gerrit/acls/stackforge/bandit.config new file mode 100644 index 0000000000..9dd1176600 --- /dev/null +++ b/modules/openstack_project/files/gerrit/acls/stackforge/bandit.config @@ -0,0 +1,14 @@ +[access "refs/heads/*"] +abandon = group bandit-core +label-Code-Review = -2..+2 group bandit-core +label-Workflow = -1..+1 group bandit-core + +[access "refs/tags/*"] +pushSignedTag = group bandit-release + +[receive] +requireChangeId = true +requireContributorAgreement = true + +[submit] +mergeContent = true diff --git a/modules/openstack_project/files/review.projects.yaml b/modules/openstack_project/files/review.projects.yaml index 75225f827d..90bcd418a8 100644 --- a/modules/openstack_project/files/review.projects.yaml +++ b/modules/openstack_project/files/review.projects.yaml @@ -540,6 +540,9 @@ - project: stackforge/aviator description: An OpenStack client library for Ruby upstream: git://github.com/aviator/aviator +- project: stackforge/bandit + description: Python AST-based static analyzer from OpenStack Security Group + upstream: git://github.com/chair6/bandit.git - project: stackforge/billingstack upstream: git://github.com/billingstack/billingstack description: Billing software diff --git a/modules/openstack_project/files/zuul/layout.yaml b/modules/openstack_project/files/zuul/layout.yaml index d6df35ff91..8133438eec 100644 --- a/modules/openstack_project/files/zuul/layout.yaml +++ b/modules/openstack_project/files/zuul/layout.yaml @@ -3483,6 +3483,11 @@ projects: gate: - gate-aviator-tests + - name: stackforge/bandit + template: + - name: merge-check + - name: noop-jobs + - name: stackforge/billingstack template: - name: merge-check