From 5772648b1a4fdd29600622991735f7ac3f558f09 Mon Sep 17 00:00:00 2001
From: David Moreau Simard <dmsimard@redhat.com>
Date: Wed, 5 Sep 2018 10:07:30 -0400
Subject: [PATCH] Temporarily ignore Bandit test B303 for insecure sha1 usage

Our usage of the sha1 method is only to hash the contents of files so we
don't store a single file more than once.
We can likely use something more "secure" but let's temporarily disable
this check for now.

Change-Id: Ie7b07e489e6c442f34fc9930713b9dfdfa530aaf
---
 tox.ini | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/tox.ini b/tox.ini
index 8da412ec..28982c3d 100644
--- a/tox.ini
+++ b/tox.ini
@@ -18,9 +18,11 @@ commands = {posargs}
 commands = sphinx-build -W -b html doc/source doc/build/html
 
 [testenv:pep8]
+# B303 - Use of insecure MD2, MD4, or MD5 hash function.
+# We're using sha1 to generate a hash of file contents.
 commands =
   flake8 ara hacking
-  bandit -r ara
+  bandit -r ara --skip B303
 
 [testenv:py35]
 commands = python manage.py test ara