Adding bandit for security static analysis testing in swift

This change adds a basic bandit config for Swift. It can be invoked by running the tox environment for bandit; tox -e bandit This is an initial step for using bandit with Swift and it should be revisited to improve the testing as more is learned about the specific needs of the Swift code base.As per now some tests are excluded as they were used on purpose. https://wiki.openstack.org/wiki/Security/Projects/Bandit Implements: blueprint swift-bandit Change-Id: I621be9a68ae9311f3a6eadd1636b05e646260cf2
author: janonymous <janonymous.codevulture@gmail.com> 2015-06-27 23:26:47 +0530
committer: janonymous <janonymous.codevulture@gmail.com> 2015-07-31 07:37:33 +0530
commit: 67513fc17c23066f6547b5e3c4ab2dc852e4f7f0 (patch)
tree: 76b4d75f9f55a26408822dd0721af5601ae2a6f4 /test-requirements.txt
parent: 170313d7db32b0509b4baaf4ac7e2de2a9b5806f (diff)
download: swift-67513fc17c23066f6547b5e3c4ab2dc852e4f7f0.tar.gz
1 files changed, 3 insertions, 0 deletions
diff --git a/test-requirements.txt b/test-requirements.txt
index b3f7eed5b..e8b3b42df 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -13,3 +13,6 @@ sphinx>=1.1.2,<1.2
 mock>=1.0
 python-swiftclient
 python-keystoneclient>=1.3.0
+
+# Security checks
+bandit>=0.10.1
author	janonymous <janonymous.codevulture@gmail.com>	2015-06-27 23:26:47 +0530
committer	janonymous <janonymous.codevulture@gmail.com>	2015-07-31 07:37:33 +0530
commit	67513fc17c23066f6547b5e3c4ab2dc852e4f7f0 (patch)
tree	76b4d75f9f55a26408822dd0721af5601ae2a6f4 /test-requirements.txt
parent	170313d7db32b0509b4baaf4ac7e2de2a9b5806f (diff)
download	swift-67513fc17c23066f6547b5e3c4ab2dc852e4f7f0.tar.gz