Skip to content

Commit

Permalink
Merge pull request freedomofpress#4429 from zenmonkeykstop/4424-fix-c…
Browse files Browse the repository at this point in the history 
…i-bandit

Fixes CVE CI job
  • Loading branch information
@conorsch
conorsch authored May 10, 2019
2 parents 0f51216 + 913321d commit ac5c921
Showing 1 changed file with 3 additions and 2 deletions.
5 changes: 3 additions & 2 deletions Makefile
View file
Original file line number Diff line number Diff line change
Expand Up @@ -106,8 +106,9 @@ safety: ## Runs `safety check` to check python dependencies for vulnerabilities
# https://wiki.openstack.org/wiki/Security/Projects/Bandit
.PHONY: bandit
bandit: ## Run bandit with medium level excluding test-related folders
pip install --upgrade bandit && \
bandit --recursive . --exclude admin/.tox,admin/.venv,admin/.eggs,molecule,testinfra,securedrop/tests,.tox,.venv -ll
pip install --upgrade pip && \
pip install --upgrade bandit!=1.6.0 && \
bandit --recursive . --exclude admin/.tox,admin/.venv,admin/.eggs,molecule,testinfra,securedrop/tests,.tox,.venv -ll

.PHONY: update-pip-requirements
update-pip-requirements: ## Updates all Python requirements files via pip-compile.
Expand Down

0 comments on commit ac5c921

Please sign in to comment.