Merge "add bandit to pep8 job"

author: Zuul <zuul@review.openstack.org> 2017-12-01 15:00:45 +0000
committer: Gerrit Code Review <review@openstack.org> 2017-12-01 15:00:45 +0000
commit: d7817e2ee15064178e6effb5961e3f0a2dfd043f (patch)
tree: cc9790c37966f7bfc01b6dab71d0a2a2ed777442
parent: 8fd9786d6e4e490d999694930c6deae7d3f0e776 (diff)
parent: 6aae80ec1897342222a255ae2aafe28cd2069137 (diff)
download: stevedore-d7817e2ee15064178e6effb5961e3f0a2dfd043f.tar.gz
2 files changed, 9 insertions, 2 deletions
diff --git a/test-requirements.txt b/test-requirements.txt
index 699eeaf..18a5a8c 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -7,3 +7,5 @@ coverage!=4.4,>=4.0 # Apache-2.0
 testrepository>=0.0.18 # Apache-2.0/BSD
 # sphinx is needed for testing the sphinxext module
 sphinx>=1.6.2 # BSD
+# Bandit security code scanner
+bandit>=1.1.0 # Apache-2.0
diff --git a/tox.ini b/tox.ini
index af8b2aa..88fecca 100644
--- a/tox.ini
+++ b/tox.ini
@@ -20,9 +20,14 @@ deps =
 commands = {posargs}
 
 [testenv:pep8]
-deps = flake8
+deps =
+  -r{toxinidir}/test-requirements.txt
+  flake8
 ignore = E251
-commands = flake8 stevedore setup.py
+commands =
+  flake8 stevedore setup.py
+  # Run security linter
+  bandit -r stevedore -x tests -n5
 
 [testenv:docs]
 deps = -r{toxinidir}/doc/requirements.txt
author	Zuul <zuul@review.openstack.org>	2017-12-01 15:00:45 +0000
committer	Gerrit Code Review <review@openstack.org>	2017-12-01 15:00:45 +0000
commit	d7817e2ee15064178e6effb5961e3f0a2dfd043f (patch)
tree	cc9790c37966f7bfc01b6dab71d0a2a2ed777442
parent	8fd9786d6e4e490d999694930c6deae7d3f0e776 (diff)
parent	6aae80ec1897342222a255ae2aafe28cd2069137 (diff)
download	stevedore-d7817e2ee15064178e6effb5961e3f0a2dfd043f.tar.gz