Closed netoarmando closed 3 years ago
Shouldn't we run it only on src
dir and not tests
. A lot of the asserts problem are from tests
dir.
I agree, we should fix the asserts on src
only. I've updated the description to reflect that.
+1 for removing the asserts. From the other issues. I'd ignore the B322:blacklist (the only "high" one). As it says it applies only for Python2 and is safe for Python3. Q is if we can somehow configure it to appear in other runs. With the 2 subprocess things. I'm not sure what to do about them. IMHO we want to call "ssh". But we probably doesn't need "shell==True".
Some isssues might be fixed byt this PR https://github.com/pvoborni/mrack/pull/24
Closing this, most of the issues were fixed, the remaining ones are related to subprocess and how we parse xml from Beaker. Full report: bandit-report.txt
I decided to execute bandit on the codebase after seeing on its README that
assert
must be avoided and it's also considered as general bad practice in OpenStack codebases (outside tests).