Fixed bandit memes
This commit is contained in:
parent
42fe293a17
commit
1e491ba8d3
@ -20,7 +20,7 @@ before_script:
|
||||
- find . -name "*.py" -exec python3 -m py_compile '{}' \;
|
||||
- find . -name "*.py" -exec pylint '{}' + || if [ $? -eq 1 ]; then echo "you fail"; fi
|
||||
- find . -name "*.py" -exec python3 -m mccabe --min 3 '{}' + || if [ $? -eq 1 ]; then echo "you fail"; fi
|
||||
- bandit -r .
|
||||
- bandit -r --ini bandit.ini
|
||||
|
||||
script:
|
||||
- docker build -t="registry.kmlabz.com/unstablevortex/webshop:$TRAVIS_BUILD_NUMBER" . && docker push "registry.kmlabz.com/unstablevortex/webshop:$TRAVIS_BUILD_NUMBER"
|
||||
|
4
bandit.ini
Normal file
4
bandit.ini
Normal file
@ -0,0 +1,4 @@
|
||||
[bandit]
|
||||
exclude = src/tests/
|
||||
recursive = true
|
||||
targets = src/
|
@ -1 +1,2 @@
|
||||
pytest
|
||||
bandit
|
||||
|
@ -16,3 +16,5 @@ def test_login_required(client):
|
||||
r = client.get('/content/caff/1')
|
||||
|
||||
assert r.status_code == 302
|
||||
|
||||
# TODO Test eache endpoint with an anonymus, registered and admin user
|
@ -46,6 +46,6 @@ class Config:
|
||||
# Some constant configured stuff configs
|
||||
SQLALCHEMY_TRACK_MODIFICATIONS = False
|
||||
SECURITY_REGISTERABLE = True
|
||||
SECURITY_PASSWORD_HASH = "bcrypt"
|
||||
SECURITY_PASSWORD_HASH = "bcrypt" # nosec - THIS IS NOT A PASSWORD YOU STUPID
|
||||
MINIO_PREVIEW_BUCKET_NAME = "previews"
|
||||
MINIO_CAFF_BUCKET_NAME = "caff"
|
||||
|
Loading…
Reference in New Issue
Block a user