Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Removes deprecated 322 test from bandit #5670

Merged
merged 1 commit into from
Dec 15, 2020
Merged

Removes deprecated 322 test from bandit #5670

merged 1 commit into from
Dec 15, 2020

Conversation

kushaldas
Copy link
Contributor

Status

Ready for review

Description of Changes

Removes old https://bandit.readthedocs.io/en/latest/blacklists/blacklist_calls.html?highlight=B322#b322-input check from bandit.

Testing

  • CI should be green.

Deployment

Any special considerations for deployment? Consider both:

  1. Upgrading existing production instances.
  2. New installs.

Checklist

If you made changes to the server application code:

  • Linting (make lint) and tests (make test) pass in the development container

If you made changes to securedrop-admin:

  • Linting and tests (make -C admin test) pass in the admin development container

If you made changes to the system configuration:

If you made non-trivial code changes:

  • I have written a test plan and validated it for this PR

Choose one of the following:

  • I have opened a PR in the docs repo for these changes, or will do so later
  • I would appreciate help with the documentation
  • These changes do not require documentation

If you added or updated a code dependency:

Choose one of the following:

  • I have performed a diff review and pasted the contents to the packaging wiki
  • I would like someone else to do the diff review

@kushaldas
Copy link
Contributor Author

Not a great day for Google cloud:

ERROR: gcloud crashed (ServerNotFoundError): Unable to find the server at www.googleapis.com

@kushaldas kushaldas mentioned this pull request Dec 15, 2020
Merged
12 tasks
zenmonkeykstop
zenmonkeykstop approved these changes Dec 15, 2020
View reviewed changes
Copy link
Contributor

@zenmonkeykstop zenmonkeykstop left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM based on visual review, CI passling

@zenmonkeykstop zenmonkeykstop merged commit b24cbaa into develop Dec 15, 2020
@rmol rmol deleted the remove_old_test_from_bandit branch December 15, 2020 15:01
rmol added a commit that referenced this pull request Dec 15, 2020
@rmol
Update bandit to 1.7.0
bfd2f8f 
The 322 test was not yet deprecated in our last pinned version (1.4.0)
so removing it from the skip list in #5670 broke in local environments
in which bandit wasn't upgraded (as is done each run in CI).

Also, 1.4.0 didn't yet support glob patterns in bandit's --exclude
option, so running it locally would take forever as the .venv
directory was scanned.
rmol added a commit that referenced this pull request Dec 15, 2020
@rmol
Update bandit to 1.7.0
2921297 
The 322 test was not yet deprecated in our last pinned version (1.4.0)
so removing it from the skip list in #5670 broke in local environments
in which bandit wasn't upgraded (as is done each run in CI).

Also, 1.4.0 didn't yet support glob patterns in bandit's --exclude
option, so running it locally would take forever as the .venv
directory was scanned.
@rmol rmol mentioned this pull request Dec 15, 2020
Merged
5 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@zenmonkeykstop zenmonkeykstop zenmonkeykstop approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@kushaldas @zenmonkeykstop