Flag-day: Auto-format and lint with black, isort, pylint and bandit + add to CI #439
Commits on Oct 20, 2022
-
Update format-related config and requirements
- Add black, isort, pylint and bandit to test requirements - Update indent in editorconfig to match black (4 spaces) - Add basic pylintrc file (copy-pasted from python-tuf) - gitignore pre-commit config Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
-
Used command: `black --line-length=80 --extend-exclude=_vendor .` Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
-
Used command: ``` isort --line-length=80 --extend-skip-glob='*/_vendor' \ --profile=black --project=securesystemslib . ``` Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu> -
Ignore pylint non-error/fatal pylint issues inline
Inline-disable all non-error/fatal pylint issues raised by running `pylint -j 0 --rcfile=pylintrc securesystemslib tests`, by adding inline comments a la `"# pylint: disable=<issue>[, ...]"`. This allows running pylint on future PRs without spending much effort on existing code, whose future is uncertain (see secure-systems-lab#270). The patch was created mostly automatically with this script: https://gist.github.com/lukpueh/41026a3a7a594164150faf5afce94774 Unfortunately, both black and isort reformat inline comments in a way that pylint won't consider them anymore. Thus, some manual adjustments after running above script were necessary. https://black.readthedocs.io/en/stable/faq.html#why-does-my-linter-or-typechecker-complain-after-i-format-my-code Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
-
Fix pylint error E0102 (function-redefined)
Remove outdated original function. Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
-
Disable pylint error E1101 (no-member)
This seems to be a false positive related to unpacking a tuple in a for loop. Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
-
Ignore low/medium-severity bandit issues inline
Inline-disable low/medium-severity bandit issues raised by running `bandit --recursive securesystemslib --exclude _vendor`, by adding inline comments a la `"# nosec"`. This allows running bandit on future PRs without spending much effort on existing code, whose future is uncertain (see secure-systems-lab#270). Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
-
Configure black, isort, pylint and bandit in CI
- Add 'lint' tox environment that runs black, isort and bandit, and mypy (moved from its own env). - Run new tox env in ci GitHub Action. Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
-
List flag-day commits in .git-blame-ignore-revs
For usage and details see: https://black.readthedocs.io/en/stable/guides/introducing_black_to_your_project.html Signed-off-by: Lukas Puehringer <lukas.puehringer@nyu.edu>
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.