Blacklist bandit 1.6.0

There's a regression[0] in bandit 1.6.0 which causes bandit to stop respecting excluded directories, and our tests throw a bunch of violations. Blacklist this version, but allow newer versions as there is already a pull request[1] to fix it, and I expect it will be included in the next release. [0] https://github.com/PyCQA/bandit/issues/488 [1] https://github.com/PyCQA/bandit/pull/489 Change-Id: Ie4dbfb3f54e4aac00e0537d5760b7a8fc81b35a2 (cherry picked from commit ebac8330d8ac81c491a1cb0e16eb23b93d7932ee)
author: Jim Rollenhagen <jim@jimrollenhagen.com> 2019-05-09 14:22:12 +0000
committer: Jim Rollenhagen <jim@jimrollenhagen.com> 2019-05-09 14:32:15 +0000
commit: bfb7ecc33c52ddf3e138fb0ebac442cbdb158e9f (patch)
tree: 5ce0f5091e47639441245141b6415b3c18c7bf1a
parent: d91be267477ff78425d28bb2ce583f14e9fa5555 (diff)
download: keystone-bfb7ecc33c52ddf3e138fb0ebac442cbdb158e9f.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/setup.cfg b/setup.cfg
index b0449df18..a6e742db2 100644
--- a/setup.cfg
+++ b/setup.cfg
@@ -32,7 +32,7 @@ memcache =
 mongodb =
   pymongo!=3.1,>=3.0.2 # Apache-2.0
 bandit =
-  bandit>=1.1.0 # Apache-2.0
+  bandit!=1.6.0,>=1.1.0 # Apache-2.0
 
 [global]
 setup-hooks =
author	Jim Rollenhagen <jim@jimrollenhagen.com>	2019-05-09 14:22:12 +0000
committer	Jim Rollenhagen <jim@jimrollenhagen.com>	2019-05-09 14:32:15 +0000
commit	bfb7ecc33c52ddf3e138fb0ebac442cbdb158e9f (patch)
tree	5ce0f5091e47639441245141b6415b3c18c7bf1a
parent	d91be267477ff78425d28bb2ce583f14e9fa5555 (diff)
download	keystone-bfb7ecc33c52ddf3e138fb0ebac442cbdb158e9f.tar.gz