Merge "add bandit to pep8 job"

author: Zuul <zuul@review.openstack.org> 2017-12-13 03:11:38 +0000
committer: Gerrit Code Review <review@openstack.org> 2017-12-13 03:11:38 +0000
commit: 5ca2a1953fe7c39d1a275eea7a8c9002dc4d45d6 (patch)
tree: 7478531213ab9954e5de22c757836f1bd13f0782
parent: 9d75e6c1fe43d1e4b43d1d9262473cc60aa01e76 (diff)
parent: e6a09f3ce70fb0de919752a09a2fb210f797f1e1 (diff)
download: oslo-middleware-5ca2a1953fe7c39d1a275eea7a8c9002dc4d45d6.tar.gz
2 files changed, 8 insertions, 1 deletions
diff --git a/test-requirements.txt b/test-requirements.txt
index 566b29b..d1bd9c5 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -12,3 +12,5 @@ testtools>=2.2.0 # MIT
 coverage!=4.4,>=4.0 # Apache-2.0
 reno>=2.5.0 # Apache-2.0
 oslo.serialization!=2.19.1,>=2.18.0 # Apache-2.0
+# Bandit security code scanner
+bandit>=1.1.0 # Apache-2.0
diff --git a/tox.ini b/tox.ini
index d5dcaa7..2e1e6ad 100644
--- a/tox.ini
+++ b/tox.ini
@@ -12,7 +12,12 @@ deps = -r{toxinidir}/test-requirements.txt
 commands = python setup.py testr --slowest --testr-args='{posargs}'
 
 [testenv:pep8]
-commands = flake8
+deps =
+  -r{toxinidir}/test-requirements.txt
+commands =
+  flake8
+  # Run security linter
+  bandit -r oslo_middleware -x tests -n5
 
 [testenv:venv]
 commands = {posargs}
author	Zuul <zuul@review.openstack.org>	2017-12-13 03:11:38 +0000
committer	Gerrit Code Review <review@openstack.org>	2017-12-13 03:11:38 +0000
commit	5ca2a1953fe7c39d1a275eea7a8c9002dc4d45d6 (patch)
tree	7478531213ab9954e5de22c757836f1bd13f0782
parent	9d75e6c1fe43d1e4b43d1d9262473cc60aa01e76 (diff)
parent	e6a09f3ce70fb0de919752a09a2fb210f797f1e1 (diff)
download	oslo-middleware-5ca2a1953fe7c39d1a275eea7a8c9002dc4d45d6.tar.gz