Fix tox constraints and bandit
This changes the upper-constraints to point to our internal, since the OpenStack Stein file doesn't exist anymore. Also, a small fix detected by the Bandit tool. Test Plan: - Execute: tox -e bandit Closes-bug: 2033294 Change-Id: I8735bcd2ad23f4269d83a3ffc880a8588e72b5a3 Signed-off-by: Hugo Brito <hugo.brito@windriver.com>
This commit is contained in:
parent
91c9d301d8
commit
da7b5b99bb
|
@ -519,7 +519,7 @@ class SysinvClient(base.DriverBase):
|
||||||
def _validate_certificate(self, signature, certificate):
|
def _validate_certificate(self, signature, certificate):
|
||||||
# JKUNG need to look at the crypto public serial id
|
# JKUNG need to look at the crypto public serial id
|
||||||
certificate_sig = hashlib.md5(
|
certificate_sig = hashlib.md5(
|
||||||
encodeutils.safe_encode(certificate)).hexdigest()
|
encodeutils.safe_encode(certificate), usedforsecurity=False).hexdigest()
|
||||||
|
|
||||||
if certificate_sig == signature:
|
if certificate_sig == signature:
|
||||||
return True
|
return True
|
||||||
|
|
2
tox.ini
2
tox.ini
|
@ -6,7 +6,7 @@ skipsdist = True
|
||||||
[testenv]
|
[testenv]
|
||||||
basepython = python3
|
basepython = python3
|
||||||
install_command = pip install -v -v -v \
|
install_command = pip install -v -v -v \
|
||||||
-c{env:UPPER_CONSTRAINTS_FILE:https://opendev.org/openstack/requirements/raw/branch/stable/stein/upper-constraints.txt} \
|
-c{env:UPPER_CONSTRAINTS_FILE:https://opendev.org/starlingx/root/raw/branch/master/build-tools/requirements/debian/upper-constraints.txt} \
|
||||||
{opts} {packages}
|
{opts} {packages}
|
||||||
setenv =
|
setenv =
|
||||||
VIRTUAL_ENV={envdir}
|
VIRTUAL_ENV={envdir}
|
||||||
|
|
Loading…
Reference in New Issue