Fix tox constraints and bandit

This changes the upper-constraints to point to our internal, since the OpenStack Stein file doesn't exist anymore. Also, a small fix detected by the Bandit tool. Test Plan: - Execute: tox -e bandit Closes-bug: 2033294 Change-Id: I8735bcd2ad23f4269d83a3ffc880a8588e72b5a3 Signed-off-by: Hugo Brito <hugo.brito@windriver.com>
2024-01-22 15:07:43 -03:00 · 2024-01-22 15:07:43 -03:00 · da7b5b99bb
parent 91c9d301d8
commit da7b5b99bb
2 changed files with 2 additions and 2 deletions
--- a/distributedcloud/dccommon/drivers/openstack/sysinv_v1.py
+++ b/distributedcloud/dccommon/drivers/openstack/sysinv_v1.py
@ -519,7 +519,7 @@ class SysinvClient(base.DriverBase):
    def _validate_certificate(self, signature, certificate):
        # JKUNG need to look at the crypto public serial id
        certificate_sig = hashlib.md5(
-            encodeutils.safe_encode(certificate)).hexdigest()
+            encodeutils.safe_encode(certificate), usedforsecurity=False).hexdigest()

        if certificate_sig == signature:
            return True
--- a/tox.ini
+++ b/tox.ini
@ -6,7 +6,7 @@ skipsdist = True
 [testenv]
 basepython = python3
 install_command = pip install -v -v -v \
-    -c{env:UPPER_CONSTRAINTS_FILE:https://opendev.org/openstack/requirements/raw/branch/stable/stein/upper-constraints.txt} \
+    -c{env:UPPER_CONSTRAINTS_FILE:https://opendev.org/starlingx/root/raw/branch/master/build-tools/requirements/debian/upper-constraints.txt} \
    {opts} {packages}
 setenv =
    VIRTUAL_ENV={envdir}