From b5a85f68b572c14cd2661d58b4d84c0eaf5a4b11 Mon Sep 17 00:00:00 2001
From: Mark Byrne <31762852+mbyrnepr2@users.noreply.github.com>
Date: Fri, 9 Dec 2022 16:27:10 +0100
Subject: Fix `bandit` high-severity warnings and use pre-commit (#7913)

Remove `shell=True` argument of `subprocess.call`.
Refactor: Use `subprocess.run` instead of `subprocess.call`.
Add `bandit` to .pre-commit-config.yaml.
Use `gitpython` for clone command.

Co-authored-by: Pierre Sassoulas <pierre.sassoulas@gmail.com>
---
 requirements_test_pre_commit.txt | 1 +
 1 file changed, 1 insertion(+)

(limited to 'requirements_test_pre_commit.txt')

diff --git a/requirements_test_pre_commit.txt b/requirements_test_pre_commit.txt
index 74eec8d62..c5d1fcb92 100644
--- a/requirements_test_pre_commit.txt
+++ b/requirements_test_pre_commit.txt
@@ -1,5 +1,6 @@
 # Everything in this file should reflect the pre-commit configuration
 # in .pre-commit-config.yaml
+bandit==1.7.4
 black==22.10.0
 flake8==6.0.0
 flake8-bugbear==22.10.27
-- 
cgit v1.2.1