From 913321d015d7cb6a87422f52dada8d243d2ebbfb Mon Sep 17 00:00:00 2001 From: Kevin O'Gorman Date: Fri, 10 May 2019 09:25:56 -0700 Subject: [PATCH] In Makefile bandit target, blacklists bandit 1.6.0 due to directory exclusion bug, installs latest pip --- Makefile | 5 +++-- 1 file changed, 3 insertions(+), 2 deletions(-) diff --git a/Makefile b/Makefile index eed9134d1d..46dc7e13ad 100644 --- a/Makefile +++ b/Makefile @@ -106,8 +106,9 @@ safety: ## Runs `safety check` to check python dependencies for vulnerabilities # https://wiki.openstack.org/wiki/Security/Projects/Bandit .PHONY: bandit bandit: ## Run bandit with medium level excluding test-related folders - pip install --upgrade bandit && \ - bandit --recursive . --exclude admin/.tox,admin/.venv,admin/.eggs,molecule,testinfra,securedrop/tests,.tox,.venv -ll + pip install --upgrade pip && \ + pip install --upgrade bandit!=1.6.0 && \ + bandit --recursive . --exclude admin/.tox,admin/.venv,admin/.eggs,molecule,testinfra,securedrop/tests,.tox,.venv -ll .PHONY: update-pip-requirements update-pip-requirements: ## Updates all Python requirements files via pip-compile.