Merge "Add bandit python security scanning to pep8"

commit: 33d0583e054002d684053c4390ae13a0563c7e95 [log] [tgz]
author: Zuul <zuul@review.openstack.org> Wed Aug 22 04:53:50 2018 +0000
committer: Gerrit Code Review <review@openstack.org> Wed Aug 22 04:53:51 2018 +0000
tree: ed62ad137e2033a25ea1b2bc094b78240974e7ac
parent: 64f3943dadf34214192a7550e8a0dc9a34eb5173 [diff]
parent: 0f73e7ca9fa0deae2c88b0e9d7b3237397d92dda [diff]
diff --git a/test-requirements.txt b/test-requirements.txt
index 9085c07..a08c27a 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt

@@ -8,3 +8,4 @@
 nose>=1.3.7 # LGPL
 nosexcover>=1.0.10 # BSD
 oslotest>=3.2.0 # Apache-2.0
+bandit>=1.5 # Apache-2.0

diff --git a/tox.ini b/tox.ini
index a09822f..ea9abf1 100644
--- a/tox.ini
+++ b/tox.ini

@@ -22,8 +22,12 @@
 
 [testenv:pep8]
 basepython = python3
-commands = flake8 {posargs}
-           check-uuid --package patrole_tempest_plugin.tests.api
+deps =
+    -r{toxinidir}/test-requirements.txt
+commands =
+    flake8 {posargs}
+    bandit -r patrole_tempest_plugin -x patrole_tempest_plugin/tests -n 5
+    check-uuid --package patrole_tempest_plugin.tests.api
 
 [testenv:uuidgen]
 basepython = python3
commit	33d0583e054002d684053c4390ae13a0563c7e95	[log] [tgz]
author	Zuul <zuul@review.openstack.org>	Wed Aug 22 04:53:50 2018 +0000
committer	Gerrit Code Review <review@openstack.org>	Wed Aug 22 04:53:51 2018 +0000
tree	ed62ad137e2033a25ea1b2bc094b78240974e7ac
parent	64f3943dadf34214192a7550e8a0dc9a34eb5173 [diff]
parent	0f73e7ca9fa0deae2c88b0e9d7b3237397d92dda [diff]