Explicitly exclude tests from bandit scan

Now that the bandit linter runs without a bandit.yaml specified, it should exclude the tests directory similar to how it did before in the bandit.yaml. The reason this has not caused a problem yet is because bandit is still finding a config bandit.yaml in .tox/pep8/etc/bandit/bandit.yaml. But in a newer version of bandit this will not be the case. Change-Id: I4fd5b0cc60309dfc207cdf2025caae37836391da
2016-03-12 20:06:40 -08:00 · 2016-03-12 20:06:40 -08:00 · c0a1b7c892
commit c0a1b7c892
parent 74520705e7
1 changed files with 2 additions and 2 deletions
--- a/tox.ini
+++ b/tox.ini
@ -13,7 +13,7 @@ commands =
 commands =
  flake8
  # Run security linter
-  bandit -r oslo_log -n5
+  bandit -r oslo_log -x tests -n5

 [testenv:venv]
 commands = {posargs}
@ -27,7 +27,7 @@ commands =
  coverage report --show-missing

 [testenv:bandit]
-commands = bandit -r oslo_log -n5
+commands = bandit -r oslo_log -x tests -n5

 [flake8]
 # E123, E125 skipped as they are invalid PEP-8.