6bf905b495
Bandit detects potential security issues in code. This patch adds it to tox. Some of the issues found need to be fixed prior to introducing into a gate job. Change-Id: Id902d8b95626f98d79755cbab9144b2d6041f66e
22 lines
709 B
Plaintext
22 lines
709 B
Plaintext
# The order of packages is significant, because pip processes them in the order
|
|
# of appearance. Changing the order has an impact on the overall integration
|
|
# process, which may cause wedges in the gate later.
|
|
|
|
hacking<0.10,>=0.9.2
|
|
|
|
coverage>=3.6 # Apache-2.0
|
|
discover # BSD
|
|
fixtures>=1.3.1 # Apache-2.0/BSD
|
|
mock>=1.2 # BSD
|
|
python-subunit>=0.0.18 # Apache-2.0/BSD
|
|
sphinx!=1.2.0,!=1.3b1,<1.3,>=1.1.2 # BSD
|
|
oslosphinx!=3.4.0,>=2.5.0 # Apache-2.0
|
|
oslotest>=1.10.0 # Apache-2.0
|
|
testrepository>=0.0.18 # Apache-2.0/BSD
|
|
testtools>=1.4.0 # MIT
|
|
testscenarios>=0.4 # Apache-2.0/BSD
|
|
WebTest>=2.0 # MIT
|
|
# This is needed for subunit-trace
|
|
tempest-lib>=0.13.0 # Apache-2.0
|
|
reno>=0.1.1 # Apache2
|
|
bandit>=0.17.3 # Apache-2.0 |