Cap Bandit below 1.6.0 and update Sphinx requirement

Bandit 1.6.0 accidentally changed how the exclusion list option is handled and breaks our use of it. Cap to the previous version until Bandit has fixed the problem. Sphinx 2.0 no longer works on python 2.7, so we need to start capping it there as well. Change-Id: Idead9b4198c6b05d72bae60dee06e5aebc223822 Reference: https://github.com/PyCQA/bandit/pull/489
author: Ben Nemec <bnemec@redhat.com> 2019-05-13 19:48:30 +0000
committer: Ben Nemec <bnemec@redhat.com> 2019-05-13 19:52:07 +0000
commit: 1d7ca8a198419896346369311fccedea5a559f66 (patch)
tree: caaade2eb1df75a067e71ae44d8c1128d68e66e9
parent: bda4cea4f77269532bbe66929be2007bde801de5 (diff)
download: oslo-policy-1d7ca8a198419896346369311fccedea5a559f66.tar.gz
1 files changed, 3 insertions, 2 deletions
diff --git a/test-requirements.txt b/test-requirements.txt
index e701ce8..a169b53 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -12,9 +12,10 @@ coverage!=4.4,>=4.0 # Apache-2.0
 
 # These are needed for docs generation
 openstackdocstheme>=1.18.1 # Apache-2.0
-sphinx!=1.6.6,!=1.6.7,>=1.6.5 # BSD
+sphinx!=1.6.6,!=1.6.7,>=1.6.5,<2.0.0;python_version=='2.7' # BSD
+sphinx!=1.6.6,!=1.6.7,>=1.6.5;python_version>='3.4' # BSD
 
 reno>=2.5.0 # Apache-2.0
 
 # Bandit security code scanner
-bandit>=1.1.0 # Apache-2.0
+bandit>=1.1.0,<1.6.0 # Apache-2.0
author	Ben Nemec <bnemec@redhat.com>	2019-05-13 19:48:30 +0000
committer	Ben Nemec <bnemec@redhat.com>	2019-05-13 19:52:07 +0000
commit	1d7ca8a198419896346369311fccedea5a559f66 (patch)
tree	caaade2eb1df75a067e71ae44d8c1128d68e66e9
parent	bda4cea4f77269532bbe66929be2007bde801de5 (diff)
download	oslo-policy-1d7ca8a198419896346369311fccedea5a559f66.tar.gz