Infra
/
lemur
5
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Add bandit to test and pre-commit

This commit is contained in:
Curtis Castrapel 2019-05-16 08:13:42 -07:00
parent 68fd1556b2
commit c5ec5fa41f
5 changed files with 20 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
.pre-commit-config.yaml
View File

@ -12,4 +12,13 @@
rev: stable rev: stable
hooks: hooks:
- id: black - id: black
language_version: python3.7 language_version: python3.7
- repo: local
hooks:
- id: python-bandit-vulnerability-check
name: bandit
entry: bandit
args: ['--ini', 'tox.ini', '-r', 'consoleme']
language: system
pass_filenames: false

2
requirements-docs.txt
View File

@ -82,7 +82,7 @@ pyyaml==5.1
raven[flask]==6.10.0 raven[flask]==6.10.0
redis==3.2.1 redis==3.2.1
requests-toolbelt==0.9.1 requests-toolbelt==0.9.1
requests[security]==2.21.0 requests[security]==2.22.0
retrying==1.3.3 retrying==1.3.3
s3transfer==0.2.0 s3transfer==0.2.0
six==1.12.0 six==1.12.0

1
requirements-tests.in
View File

@ -1,5 +1,6 @@
# Run `make up-reqs` to update pinned dependencies in requirement text files # Run `make up-reqs` to update pinned dependencies in requirement text files
bandit
black black
coverage coverage
factory-boy factory-boy

8
requirements-tests.txt
View File

@ -10,6 +10,7 @@ atomicwrites==1.3.0 # via pytest
attrs==19.1.0 # via black, pytest attrs==19.1.0 # via black, pytest
aws-sam-translator==1.11.0 # via cfn-lint aws-sam-translator==1.11.0 # via cfn-lint
aws-xray-sdk==2.4.2 # via moto aws-xray-sdk==2.4.2 # via moto
bandit==1.6.0
black==19.3b0 black==19.3b0
boto3==1.9.149 # via aws-sam-translator, moto boto3==1.9.149 # via aws-sam-translator, moto
boto==2.49.0 # via moto boto==2.49.0 # via moto
@ -30,6 +31,8 @@ faker==1.0.7
flask==1.0.2 # via pytest-flask flask==1.0.2 # via pytest-flask
freezegun==0.3.11 freezegun==0.3.11
future==0.17.1 # via aws-xray-sdk, python-jose future==0.17.1 # via aws-xray-sdk, python-jose
gitdb2==2.0.5 # via gitpython
gitpython==2.1.11 # via bandit
idna==2.8 # via moto, requests idna==2.8 # via moto, requests
itsdangerous==1.1.0 # via flask itsdangerous==1.1.0 # via flask
jinja2==2.10.1 # via flask, moto jinja2==2.10.1 # via flask, moto
@ -44,6 +47,7 @@ mock==3.0.5 # via moto
more-itertools==7.0.0 # via pytest more-itertools==7.0.0 # via pytest
moto==1.3.8 moto==1.3.8
nose==1.3.7 nose==1.3.7
pbr==5.2.0 # via stevedore
pluggy==0.11.0 # via pytest pluggy==0.11.0 # via pytest
py==1.8.0 # via pytest py==1.8.0 # via pytest
pyasn1==0.4.5 # via rsa pyasn1==0.4.5 # via rsa
@ -61,7 +65,9 @@ requests==2.22.0 # via cfn-lint, docker, moto, requests-mock, responses
responses==0.10.6 # via moto responses==0.10.6 # via moto
rsa==4.0 # via python-jose rsa==4.0 # via python-jose
s3transfer==0.2.0 # via boto3 s3transfer==0.2.0 # via boto3
six==1.12.0 # via aws-sam-translator, cfn-lint, cryptography, docker, docker-pycreds, faker, freezegun, mock, moto, pytest, python-dateutil, python-jose, requests-mock, responses, websocket-client six==1.12.0 # via aws-sam-translator, bandit, cfn-lint, cryptography, docker, docker-pycreds, faker, freezegun, mock, moto, pytest, python-dateutil, python-jose, requests-mock, responses, stevedore, websocket-client
smmap2==2.0.5 # via gitdb2
stevedore==1.30.1 # via bandit
text-unidecode==1.2 # via faker text-unidecode==1.2 # via faker
toml==0.10.0 # via black toml==0.10.0 # via black
urllib3==1.24.3 # via botocore, requests urllib3==1.24.3 # via botocore, requests

2
requirements.txt
View File

@ -77,7 +77,7 @@ pyyaml==5.1
raven[flask]==6.10.0 raven[flask]==6.10.0
redis==3.2.1 redis==3.2.1
requests-toolbelt==0.9.1 # via acme requests-toolbelt==0.9.1 # via acme
requests[security]==2.21.0 requests[security]==2.22.0
retrying==1.3.3 retrying==1.3.3
s3transfer==0.2.0 # via boto3 s3transfer==0.2.0 # via boto3
six==1.12.0 six==1.12.0