Diff of the two buildlogs: -- --- b1/build.log 2021-11-29 06:33:44.155134809 +0000 +++ b2/build.log 2021-11-29 06:36:04.258340653 +0000 @@ -1,6 +1,6 @@ I: pbuilder: network access will be disabled during build -I: Current time: Sun Nov 28 18:23:59 -12 2021 -I: pbuilder-time-stamp: 1638167039 +I: Current time: Mon Jan 2 02:56:48 +14 2023 +I: pbuilder-time-stamp: 1672577808 I: Building the build Environment I: extracting base tarball [/var/cache/pbuilder/buster-reproducible-base.tgz] I: copying local configuration @@ -17,7 +17,7 @@ I: Extracting source gpgv: unknown type of key resource 'trustedkeys.kbx' gpgv: keyblock resource '/root/.gnupg/trustedkeys.kbx': General error -gpgv: Signature made Sun Sep 16 19:17:03 2018 -12 +gpgv: Signature made Mon Sep 17 21:17:03 2018 +14 gpgv: using RSA key B4A0AAFCA86C86055D067614AB53E503586877A6 gpgv: issuer "zigo@debian.org" gpgv: Can't check signature: No public key @@ -27,136 +27,170 @@ dpkg-source: info: unpacking bandit_1.5.1-1.debian.tar.xz I: using fakeroot in build. I: Installing the build-deps -I: user script /srv/workspace/pbuilder/715190/tmp/hooks/D02_print_environment starting +I: user script /srv/workspace/pbuilder/3408237/tmp/hooks/D01_modify_environment starting +debug: Running on ionos5-amd64. +I: Changing host+domainname to test build reproducibility +I: Adding a custom variable just for the fun of it... +I: Changing /bin/sh to bash +Removing 'diversion of /bin/sh to /bin/sh.distrib by dash' +Adding 'diversion of /bin/sh to /bin/sh.distrib by bash' +Removing 'diversion of /usr/share/man/man1/sh.1.gz to /usr/share/man/man1/sh.distrib.1.gz by dash' +Adding 'diversion of /usr/share/man/man1/sh.1.gz to /usr/share/man/man1/sh.distrib.1.gz by bash' +I: Setting pbuilder2's login shell to /bin/bash +I: Setting pbuilder2's GECOS to second user,second room,second work-phone,second home-phone,second other +I: user script /srv/workspace/pbuilder/3408237/tmp/hooks/D01_modify_environment finished +I: user script /srv/workspace/pbuilder/3408237/tmp/hooks/D02_print_environment starting I: set - BUILDDIR='/build' - BUILDUSERGECOS='first user,first room,first work-phone,first home-phone,first other' - BUILDUSERNAME='pbuilder1' - BUILD_ARCH='amd64' - DEBIAN_FRONTEND='noninteractive' - DEB_BUILD_OPTIONS='buildinfo=+all reproducible=+all parallel=15' - DISTRIBUTION='' - HOME='/root' - HOST_ARCH='amd64' + BASH=/bin/sh + BASHOPTS=checkwinsize:cmdhist:complete_fullquote:extquote:force_fignore:globasciiranges:hostcomplete:interactive_comments:progcomp:promptvars:sourcepath + BASH_ALIASES=() + BASH_ARGC=() + BASH_ARGV=() + BASH_CMDS=() + BASH_LINENO=([0]="12" [1]="0") + BASH_SOURCE=([0]="/tmp/hooks/D02_print_environment" [1]="/tmp/hooks/D02_print_environment") + BASH_VERSINFO=([0]="5" [1]="0" [2]="3" [3]="1" [4]="release" [5]="x86_64-pc-linux-gnu") + BASH_VERSION='5.0.3(1)-release' + BUILDDIR=/build + BUILDUSERGECOS='second user,second room,second work-phone,second home-phone,second other' + BUILDUSERNAME=pbuilder2 + BUILD_ARCH=amd64 + DEBIAN_FRONTEND=noninteractive + DEB_BUILD_OPTIONS='buildinfo=+all reproducible=+all parallel=16' + DIRSTACK=() + DISTRIBUTION= + EUID=0 + FUNCNAME=([0]="Echo" [1]="main") + GROUPS=() + HOME=/root + HOSTNAME=i-capture-the-hostname + HOSTTYPE=x86_64 + HOST_ARCH=amd64 IFS=' ' - INVOCATION_ID='b4c80b6ac81d4dd39197686455c31ce1' - LANG='C' - LANGUAGE='en_US:en' - LC_ALL='C' - MAIL='/var/mail/root' - OPTIND='1' - PATH='/usr/sbin:/usr/bin:/sbin:/bin:/usr/games' - PBCURRENTCOMMANDLINEOPERATION='build' - PBUILDER_OPERATION='build' - PBUILDER_PKGDATADIR='/usr/share/pbuilder' - PBUILDER_PKGLIBDIR='/usr/lib/pbuilder' - PBUILDER_SYSCONFDIR='/etc' - PPID='715190' - PS1='# ' - PS2='> ' + INVOCATION_ID=90108411080e42bea518df2bb746bbee + LANG=C + LANGUAGE=et_EE:et + LC_ALL=C + MACHTYPE=x86_64-pc-linux-gnu + MAIL=/var/mail/root + OPTERR=1 + OPTIND=1 + OSTYPE=linux-gnu + PATH=/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/i/capture/the/path + PBCURRENTCOMMANDLINEOPERATION=build + PBUILDER_OPERATION=build + PBUILDER_PKGDATADIR=/usr/share/pbuilder + PBUILDER_PKGLIBDIR=/usr/lib/pbuilder + PBUILDER_SYSCONFDIR=/etc + PIPESTATUS=([0]="0") + POSIXLY_CORRECT=y + PPID=3408237 PS4='+ ' - PWD='/' - SHELL='/bin/bash' - SHLVL='2' - SUDO_COMMAND='/usr/bin/timeout -k 18.1h 18h /usr/bin/ionice -c 3 /usr/bin/nice /usr/sbin/pbuilder --build --configfile /srv/reproducible-results/rbuild-debian/tmp.6RpYqrrHA0/pbuilderrc_i2Kr --hookdir /etc/pbuilder/first-build-hooks --debbuildopts -b --basetgz /var/cache/pbuilder/buster-reproducible-base.tgz --buildresult /srv/reproducible-results/rbuild-debian/tmp.6RpYqrrHA0/b1 --logfile b1/build.log bandit_1.5.1-1.dsc' - SUDO_GID='110' - SUDO_UID='105' - SUDO_USER='jenkins' - TERM='unknown' - TZ='/usr/share/zoneinfo/Etc/GMT+12' - USER='root' - _='/usr/bin/systemd-run' - http_proxy='http://78.137.99.97:3128' + PWD=/ + SHELL=/bin/bash + SHELLOPTS=braceexpand:errexit:hashall:interactive-comments:posix + SHLVL=3 + SUDO_COMMAND='/usr/bin/timeout -k 24.1h 24h /usr/bin/ionice -c 3 /usr/bin/nice -n 11 /usr/bin/unshare --uts -- /usr/sbin/pbuilder --build --configfile /srv/reproducible-results/rbuild-debian/tmp.6RpYqrrHA0/pbuilderrc_FFKk --hookdir /etc/pbuilder/rebuild-hooks --debbuildopts -b --basetgz /var/cache/pbuilder/buster-reproducible-base.tgz --buildresult /srv/reproducible-results/rbuild-debian/tmp.6RpYqrrHA0/b2 --logfile b2/build.log bandit_1.5.1-1.dsc' + SUDO_GID=110 + SUDO_UID=105 + SUDO_USER=jenkins + TERM=unknown + TZ=/usr/share/zoneinfo/Etc/GMT-14 + UID=0 + USER=root + _='I: set' + http_proxy=http://85.184.249.68:3128 I: uname -a - Linux ionos1-amd64 5.10.0-9-amd64 #1 SMP Debian 5.10.70-1 (2021-09-30) x86_64 GNU/Linux + Linux i-capture-the-hostname 5.14.0-0.bpo.2-amd64 #1 SMP Debian 5.14.9-2~bpo11+1 (2021-10-10) x86_64 GNU/Linux I: ls -l /bin total 5116 - -rwxr-xr-x 1 root root 1168776 Apr 17 2019 bash - -rwxr-xr-x 3 root root 38984 Jul 10 2019 bunzip2 - -rwxr-xr-x 3 root root 38984 Jul 10 2019 bzcat - lrwxrwxrwx 1 root root 6 Jul 10 2019 bzcmp -> bzdiff - -rwxr-xr-x 1 root root 2227 Jul 10 2019 bzdiff - lrwxrwxrwx 1 root root 6 Jul 10 2019 bzegrep -> bzgrep - -rwxr-xr-x 1 root root 4877 Jun 24 2019 bzexe - lrwxrwxrwx 1 root root 6 Jul 10 2019 bzfgrep -> bzgrep - -rwxr-xr-x 1 root root 3641 Jul 10 2019 bzgrep - -rwxr-xr-x 3 root root 38984 Jul 10 2019 bzip2 - -rwxr-xr-x 1 root root 14328 Jul 10 2019 bzip2recover - lrwxrwxrwx 1 root root 6 Jul 10 2019 bzless -> bzmore - -rwxr-xr-x 1 root root 1297 Jul 10 2019 bzmore - -rwxr-xr-x 1 root root 43744 Feb 28 2019 cat - -rwxr-xr-x 1 root root 64320 Feb 28 2019 chgrp - -rwxr-xr-x 1 root root 64288 Feb 28 2019 chmod - -rwxr-xr-x 1 root root 72512 Feb 28 2019 chown - -rwxr-xr-x 1 root root 146880 Feb 28 2019 cp - -rwxr-xr-x 1 root root 121464 Jan 17 2019 dash - -rwxr-xr-x 1 root root 109408 Feb 28 2019 date - -rwxr-xr-x 1 root root 76712 Feb 28 2019 dd - -rwxr-xr-x 1 root root 93744 Feb 28 2019 df - -rwxr-xr-x 1 root root 138856 Feb 28 2019 dir - -rwxr-xr-x 1 root root 84288 Jan 9 2019 dmesg - lrwxrwxrwx 1 root root 8 Sep 26 2018 dnsdomainname -> hostname - lrwxrwxrwx 1 root root 8 Sep 26 2018 domainname -> hostname - -rwxr-xr-x 1 root root 39520 Feb 28 2019 echo - -rwxr-xr-x 1 root root 28 Jan 7 2019 egrep - -rwxr-xr-x 1 root root 35424 Feb 28 2019 false - -rwxr-xr-x 1 root root 28 Jan 7 2019 fgrep - -rwxr-xr-x 1 root root 68880 Jan 9 2019 findmnt - -rwsr-xr-x 1 root root 34896 Apr 22 2020 fusermount - -rwxr-xr-x 1 root root 198976 Jan 7 2019 grep - -rwxr-xr-x 2 root root 2345 Jan 5 2019 gunzip - -rwxr-xr-x 1 root root 6375 Jan 5 2019 gzexe - -rwxr-xr-x 1 root root 98048 Jan 5 2019 gzip - -rwxr-xr-x 1 root root 26696 Sep 26 2018 hostname - -rwxr-xr-x 1 root root 68552 Feb 28 2019 ln - -rwxr-xr-x 1 root root 56760 Jul 26 2018 login - -rwxr-xr-x 1 root root 138856 Feb 28 2019 ls - -rwxr-xr-x 1 root root 108624 Jan 9 2019 lsblk - -rwxr-xr-x 1 root root 89088 Feb 28 2019 mkdir - -rwxr-xr-x 1 root root 68544 Feb 28 2019 mknod - -rwxr-xr-x 1 root root 43808 Feb 28 2019 mktemp - -rwxr-xr-x 1 root root 43008 Jan 9 2019 more - -rwsr-xr-x 1 root root 51280 Jan 9 2019 mount - -rwxr-xr-x 1 root root 14408 Jan 9 2019 mountpoint - -rwxr-xr-x 1 root root 138728 Feb 28 2019 mv - lrwxrwxrwx 1 root root 8 Sep 26 2018 nisdomainname -> hostname - lrwxrwxrwx 1 root root 14 Feb 14 2019 pidof -> /sbin/killall5 - -rwxr-xr-x 1 root root 39616 Feb 28 2019 pwd - lrwxrwxrwx 1 root root 4 Apr 17 2019 rbash -> bash - -rwxr-xr-x 1 root root 47776 Feb 28 2019 readlink - -rwxr-xr-x 1 root root 68416 Feb 28 2019 rm - -rwxr-xr-x 1 root root 47776 Feb 28 2019 rmdir - -rwxr-xr-x 1 root root 23312 Jan 21 2019 run-parts - -rwxr-xr-x 1 root root 122224 Dec 22 2018 sed - lrwxrwxrwx 1 root root 4 Nov 7 09:58 sh -> dash - -rwxr-xr-x 1 root root 39552 Feb 28 2019 sleep - -rwxr-xr-x 1 root root 80672 Feb 28 2019 stty - -rwsr-xr-x 1 root root 63568 Jan 9 2019 su - -rwxr-xr-x 1 root root 35488 Feb 28 2019 sync - -rwxr-xr-x 1 root root 445560 Apr 23 2019 tar - -rwxr-xr-x 1 root root 14440 Jan 21 2019 tempfile - -rwxr-xr-x 1 root root 97152 Feb 28 2019 touch - -rwxr-xr-x 1 root root 35424 Feb 28 2019 true - -rwxr-xr-x 1 root root 14328 Apr 22 2020 ulockmgr_server - -rwsr-xr-x 1 root root 34888 Jan 9 2019 umount - -rwxr-xr-x 1 root root 39584 Feb 28 2019 uname - -rwxr-xr-x 2 root root 2345 Jan 5 2019 uncompress - -rwxr-xr-x 1 root root 138856 Feb 28 2019 vdir - -rwxr-xr-x 1 root root 34896 Jan 9 2019 wdctl - -rwxr-xr-x 1 root root 946 Jan 21 2019 which - lrwxrwxrwx 1 root root 8 Sep 26 2018 ypdomainname -> hostname - -rwxr-xr-x 1 root root 1983 Jan 5 2019 zcat - -rwxr-xr-x 1 root root 1677 Jan 5 2019 zcmp - -rwxr-xr-x 1 root root 5879 Jan 5 2019 zdiff - -rwxr-xr-x 1 root root 29 Jan 5 2019 zegrep - -rwxr-xr-x 1 root root 29 Jan 5 2019 zfgrep - -rwxr-xr-x 1 root root 2080 Jan 5 2019 zforce - -rwxr-xr-x 1 root root 7584 Jan 5 2019 zgrep - -rwxr-xr-x 1 root root 2205 Jan 5 2019 zless - -rwxr-xr-x 1 root root 1841 Jan 5 2019 zmore - -rwxr-xr-x 1 root root 4552 Jan 5 2019 znew -I: user script /srv/workspace/pbuilder/715190/tmp/hooks/D02_print_environment finished + -rwxr-xr-x 1 root root 1168776 Apr 18 2019 bash + -rwxr-xr-x 3 root root 38984 Jul 11 2019 bunzip2 + -rwxr-xr-x 3 root root 38984 Jul 11 2019 bzcat + lrwxrwxrwx 1 root root 6 Jul 11 2019 bzcmp -> bzdiff + -rwxr-xr-x 1 root root 2227 Jul 11 2019 bzdiff + lrwxrwxrwx 1 root root 6 Jul 11 2019 bzegrep -> bzgrep + -rwxr-xr-x 1 root root 4877 Jun 25 2019 bzexe + lrwxrwxrwx 1 root root 6 Jul 11 2019 bzfgrep -> bzgrep + -rwxr-xr-x 1 root root 3641 Jul 11 2019 bzgrep + -rwxr-xr-x 3 root root 38984 Jul 11 2019 bzip2 + -rwxr-xr-x 1 root root 14328 Jul 11 2019 bzip2recover + lrwxrwxrwx 1 root root 6 Jul 11 2019 bzless -> bzmore + -rwxr-xr-x 1 root root 1297 Jul 11 2019 bzmore + -rwxr-xr-x 1 root root 43744 Mar 1 2019 cat + -rwxr-xr-x 1 root root 64320 Mar 1 2019 chgrp + -rwxr-xr-x 1 root root 64288 Mar 1 2019 chmod + -rwxr-xr-x 1 root root 72512 Mar 1 2019 chown + -rwxr-xr-x 1 root root 146880 Mar 1 2019 cp + -rwxr-xr-x 1 root root 121464 Jan 18 2019 dash + -rwxr-xr-x 1 root root 109408 Mar 1 2019 date + -rwxr-xr-x 1 root root 76712 Mar 1 2019 dd + -rwxr-xr-x 1 root root 93744 Mar 1 2019 df + -rwxr-xr-x 1 root root 138856 Mar 1 2019 dir + -rwxr-xr-x 1 root root 84288 Jan 10 2019 dmesg + lrwxrwxrwx 1 root root 8 Sep 27 2018 dnsdomainname -> hostname + lrwxrwxrwx 1 root root 8 Sep 27 2018 domainname -> hostname + -rwxr-xr-x 1 root root 39520 Mar 1 2019 echo + -rwxr-xr-x 1 root root 28 Jan 8 2019 egrep + -rwxr-xr-x 1 root root 35424 Mar 1 2019 false + -rwxr-xr-x 1 root root 28 Jan 8 2019 fgrep + -rwxr-xr-x 1 root root 68880 Jan 10 2019 findmnt + -rwsr-xr-x 1 root root 34896 Apr 23 2020 fusermount + -rwxr-xr-x 1 root root 198976 Jan 8 2019 grep + -rwxr-xr-x 2 root root 2345 Jan 6 2019 gunzip + -rwxr-xr-x 1 root root 6375 Jan 6 2019 gzexe + -rwxr-xr-x 1 root root 98048 Jan 6 2019 gzip + -rwxr-xr-x 1 root root 26696 Sep 27 2018 hostname + -rwxr-xr-x 1 root root 68552 Mar 1 2019 ln + -rwxr-xr-x 1 root root 56760 Jul 27 2018 login + -rwxr-xr-x 1 root root 138856 Mar 1 2019 ls + -rwxr-xr-x 1 root root 108624 Jan 10 2019 lsblk + -rwxr-xr-x 1 root root 89088 Mar 1 2019 mkdir + -rwxr-xr-x 1 root root 68544 Mar 1 2019 mknod + -rwxr-xr-x 1 root root 43808 Mar 1 2019 mktemp + -rwxr-xr-x 1 root root 43008 Jan 10 2019 more + -rwsr-xr-x 1 root root 51280 Jan 10 2019 mount + -rwxr-xr-x 1 root root 14408 Jan 10 2019 mountpoint + -rwxr-xr-x 1 root root 138728 Mar 1 2019 mv + lrwxrwxrwx 1 root root 8 Sep 27 2018 nisdomainname -> hostname + lrwxrwxrwx 1 root root 14 Feb 15 2019 pidof -> /sbin/killall5 + -rwxr-xr-x 1 root root 39616 Mar 1 2019 pwd + lrwxrwxrwx 1 root root 4 Apr 18 2019 rbash -> bash + -rwxr-xr-x 1 root root 47776 Mar 1 2019 readlink + -rwxr-xr-x 1 root root 68416 Mar 1 2019 rm + -rwxr-xr-x 1 root root 47776 Mar 1 2019 rmdir + -rwxr-xr-x 1 root root 23312 Jan 22 2019 run-parts + -rwxr-xr-x 1 root root 122224 Dec 23 2018 sed + lrwxrwxrwx 1 root root 4 Jan 2 02:56 sh -> bash + lrwxrwxrwx 1 root root 4 Dec 11 18:21 sh.distrib -> dash + -rwxr-xr-x 1 root root 39552 Mar 1 2019 sleep + -rwxr-xr-x 1 root root 80672 Mar 1 2019 stty + -rwsr-xr-x 1 root root 63568 Jan 10 2019 su + -rwxr-xr-x 1 root root 35488 Mar 1 2019 sync + -rwxr-xr-x 1 root root 445560 Apr 24 2019 tar + -rwxr-xr-x 1 root root 14440 Jan 22 2019 tempfile + -rwxr-xr-x 1 root root 97152 Mar 1 2019 touch + -rwxr-xr-x 1 root root 35424 Mar 1 2019 true + -rwxr-xr-x 1 root root 14328 Apr 23 2020 ulockmgr_server + -rwsr-xr-x 1 root root 34888 Jan 10 2019 umount + -rwxr-xr-x 1 root root 39584 Mar 1 2019 uname + -rwxr-xr-x 2 root root 2345 Jan 6 2019 uncompress + -rwxr-xr-x 1 root root 138856 Mar 1 2019 vdir + -rwxr-xr-x 1 root root 34896 Jan 10 2019 wdctl + -rwxr-xr-x 1 root root 946 Jan 22 2019 which + lrwxrwxrwx 1 root root 8 Sep 27 2018 ypdomainname -> hostname + -rwxr-xr-x 1 root root 1983 Jan 6 2019 zcat + -rwxr-xr-x 1 root root 1677 Jan 6 2019 zcmp + -rwxr-xr-x 1 root root 5879 Jan 6 2019 zdiff + -rwxr-xr-x 1 root root 29 Jan 6 2019 zegrep + -rwxr-xr-x 1 root root 29 Jan 6 2019 zfgrep + -rwxr-xr-x 1 root root 2080 Jan 6 2019 zforce + -rwxr-xr-x 1 root root 7584 Jan 6 2019 zgrep + -rwxr-xr-x 1 root root 2205 Jan 6 2019 zless + -rwxr-xr-x 1 root root 1841 Jan 6 2019 zmore + -rwxr-xr-x 1 root root 4552 Jan 6 2019 znew +I: user script /srv/workspace/pbuilder/3408237/tmp/hooks/D02_print_environment finished -> Attempting to satisfy build-dependencies -> Creating pbuilder-satisfydepends-dummy package Package: pbuilder-satisfydepends-dummy @@ -529,7 +563,7 @@ Get: 267 http://deb.debian.org/debian buster/main amd64 python3-stestr all 2.1.0-2 [48.3 kB] Get: 268 http://deb.debian.org/debian buster/main amd64 python3-oslotest all 1:3.6.0-2 [19.2 kB] Get: 269 http://deb.debian.org/debian buster/main amd64 python3-testscenarios all 0.5.0-2 [13.4 kB] -Fetched 57.3 MB in 20s (2809 kB/s) +Fetched 57.3 MB in 1s (64.8 MB/s) debconf: delaying package configuration, since apt-utils is not installed Selecting previously unselected package libbsd0:amd64. (Reading database ... (Reading database ... 5% (Reading database ... 10% (Reading database ... 15% (Reading database ... 20% (Reading database ... 25% (Reading database ... 30% (Reading database ... 35% (Reading database ... 40% (Reading database ... 45% (Reading database ... 50% (Reading database ... 55% (Reading database ... 60% (Reading database ... 65% (Reading database ... 70% (Reading database ... 75% (Reading database ... 80% (Reading database ... 85% (Reading database ... 90% (Reading database ... 95% (Reading database ... 100% (Reading database ... 19195 files and directories currently installed.) @@ -1676,7 +1710,8 @@ fakeroot is already the newest version (1.23-1). 0 upgraded, 0 newly installed, 0 to remove and 0 not upgraded. I: Building the package -I: Running cd /build/bandit-1.5.1/ && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games" HOME="/nonexistent/first-build" dpkg-buildpackage -us -uc -b && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games" HOME="/nonexistent/first-build" dpkg-genchanges -S > ../bandit_1.5.1-1_source.changes +hostname: Name or service not known +I: Running cd /build/bandit-1.5.1/ && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/i/capture/the/path" HOME="/nonexistent/second-build" dpkg-buildpackage -us -uc -b && env PATH="/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/i/capture/the/path" HOME="/nonexistent/second-build" dpkg-genchanges -S > ../bandit_1.5.1-1_source.changes dpkg-buildpackage: info: source package bandit dpkg-buildpackage: info: source version 1.5.1-1 dpkg-buildpackage: info: source distribution unstable @@ -1815,49 +1850,225 @@ + PYTHONS=disabled + PYTHON3S=disabled + TEST_PARALLEL_OPT=--parallel -+ [ yes = yes ] ++ for i in $@ ++ case "${1}" in ++ '[' yes = yes ']' + PYTHONS=2.7 -+ [ yes = yes ] -+ py3versions -vr ++ '[' yes = yes ']' +++ py3versions -vr + PYTHON3S=3.7 -+ [ yes = no ] -+ [ 2.7 = disabled ] -+ echo 2.7 -+ cut -d. -f1 ++ '[' yes = no ']' ++ for pyvers in ${PYTHONS} ${PYTHON3S} ++ '[' 2.7 = disabled ']' +++ cut -d. -f1 +++ echo 2.7 + PYMAJOR=2 -+ echo ===> Testing with python (python2) ++ echo '===> Testing with python (python2)' ===> Testing with python (python2) -+ [ 2 = 3 ] -+ [ 2 = 2 ] -+ pwd -+ [ -d /build/bandit-1.5.1/debian/tmp/usr/lib/python3/dist-packages ] -+ [ -e .stestr.conf ] ++ '[' 2 = 3 ']' ++ '[' 2 = 2 ']' +++ pwd ++ '[' -d /build/bandit-1.5.1/debian/tmp/usr/lib/python3/dist-packages ']' ++ '[' -e .stestr.conf ']' + rm -rf .stestr -+ PYTHON=python2.7 python2-stestr run --subunit tests\.(?!(.*unit\.cli\.test_baseline\.BanditBaselineToolTests\.test_bandit_baseline.*|.*functional\.test_runtime.*|.*functional\.test_baseline.*)) ++ PYTHON=python2.7 ++ python2-stestr run --subunit 'tests\.(?!(.*unit\.cli\.test_baseline\.BanditBaselineToolTests\.test_bandit_baseline.*|.*functional\.test_runtime.*|.*functional\.test_baseline.*))' + subunit2pyunit -tests.functional.test_functional.FunctionalTests.test_asserts -tests.functional.test_functional.FunctionalTests.test_asserts ... ok +tests.functional.test_functional.FunctionalTests.test_cipher_modes +tests.functional.test_functional.FunctionalTests.test_cipher_modes ... ok +tests.functional.test_functional.FunctionalTests.test_code_line_numbers +tests.functional.test_functional.FunctionalTests.test_code_line_numbers ... ok +tests.functional.test_functional.FunctionalTests.test_exec +tests.functional.test_functional.FunctionalTests.test_exec ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file ... ok +tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger +tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_target +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_target ... ok +No handlers could be found for logger "bandit.core.config" +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test ... ok +tests.functional.test_functional.FunctionalTests.test_os_exec +tests.functional.test_functional.FunctionalTests.test_os_exec ... ok +tests.unit.core.test_config.TestConfigCompat.test_deprecation_message +tests.unit.core.test_config.TestConfigCompat.test_deprecation_message ... ok +tests.unit.core.test_context.ContextTests.test_string_val +tests.unit.core.test_context.ContextTests.test_string_val ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_include +tests.unit.core.test_manager.ManagerTests.test_discover_files_include ... ok +tests.unit.core.test_util.UtilTests.test_check_ast_node_good +tests.unit.core.test_util.UtilTests.test_check_ast_node_good ... ok +tests.unit.core.test_util.UtilTests.test_deepgetattr +tests.unit.core.test_util.UtilTests.test_deepgetattr ... ok +tests.functional.test_functional.FunctionalTests.test_crypto_md5 +tests.functional.test_functional.FunctionalTests.test_crypto_md5 ... ok +tests.unit.core.test_util.UtilTests.test_get_call_name3 +tests.unit.core.test_util.UtilTests.test_get_call_name3 ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid ... ok +tests.unit.formatters.test_json.JsonFormatterTests.test_report +tests.unit.formatters.test_json.JsonFormatterTests.test_report ... ok tests.functional.test_functional.FunctionalTests.test_blacklist_input tests.functional.test_functional.FunctionalTests.test_blacklist_input ... ok +tests.functional.test_functional.FunctionalTests.test_asserts +tests.functional.test_functional.FunctionalTests.test_asserts ... ok +tests.functional.test_functional.FunctionalTests.test_imports_aliases +tests.functional.test_functional.FunctionalTests.test_imports_aliases ... ok +tests.functional.test_functional.FunctionalTests.test_httplib_https +tests.functional.test_functional.FunctionalTests.test_httplib_https ... ok +tests.functional.test_functional.FunctionalTests.test_multiline_code +tests.functional.test_functional.FunctionalTests.test_multiline_code ... ok +tests.functional.test_functional.FunctionalTests.test_imports_using_importlib +tests.functional.test_functional.FunctionalTests.test_imports_using_importlib ... ok +tests.functional.test_functional.FunctionalTests.test_skip +tests.functional.test_functional.FunctionalTests.test_skip ... ok +tests.functional.test_functional.FunctionalTests.test_try_except_continue +tests.functional.test_functional.FunctionalTests.test_try_except_continue ... ok +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger ... ok +tests.functional.test_functional.FunctionalTests.test_mktemp +tests.functional.test_functional.FunctionalTests.test_mktemp ... ok +tests.functional.test_functional.FunctionalTests.test_nonsense +tests.functional.test_functional.FunctionalTests.test_nonsense ... ok +tests.functional.test_functional.FunctionalTests.test_dill +tests.functional.test_functional.FunctionalTests.test_dill ... ok +tests.functional.test_functional.FunctionalTests.test_blacklist_pycrypto +tests.functional.test_functional.FunctionalTests.test_blacklist_pycrypto ... ok +[main] DEBUG logging initialized +[ ERROR ] File bandit_baseline_result.txt already exists, aborting +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger +tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger ... ok +[main] INFO profile exclude tests: None +tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode +tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode ... [main] INFO cli include tests: None +ok +[main] INFO cli exclude tests: badID +[main] ERROR Unknown test found in profile: badID +[manager] WARNING Skipping directory (thing), use -r flag to scan contents +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests ... ok +tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg +tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg ... ok +tests.unit.core.test_context.ContextTests.test_node +tests.unit.core.test_context.ContextTests.test_node ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip ... ok +tests.functional.test_functional.FunctionalTests.test_blacklist_pycryptodome +tests.functional.test_functional.FunctionalTests.test_blacklist_pycryptodome ... ok +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical ... ok +tests.functional.test_functional.FunctionalTests.test_binding +tests.functional.test_functional.FunctionalTests.test_binding ... ok +tests.functional.test_functional.FunctionalTests.test_hardcoded_passwords +tests.functional.test_functional.FunctionalTests.test_hardcoded_passwords ... ok +tests.functional.test_functional.FunctionalTests.test_imports +tests.functional.test_functional.FunctionalTests.test_imports ... ok +tests.functional.test_functional.FunctionalTests.test_random_module +tests.functional.test_functional.FunctionalTests.test_random_module ... ok +tests.functional.test_functional.FunctionalTests.test_os_spawn +tests.functional.test_functional.FunctionalTests.test_os_spawn ... ok +tests.functional.test_functional.FunctionalTests.test_try_except_pass +tests.functional.test_functional.FunctionalTests.test_try_except_pass ... ok +tests.functional.test_functional.FunctionalTests.test_baseline_filter +tests.functional.test_functional.FunctionalTests.test_baseline_filter ... ok +tests.functional.test_functional.FunctionalTests.test_ftp_usage +tests.functional.test_functional.FunctionalTests.test_ftp_usage ... ok +tests.functional.test_functional.FunctionalTests.test_imports_function +tests.functional.test_functional.FunctionalTests.test_imports_function ... ok +[ INFO ] No output format specified, using terminal +tests.functional.test_functional.FunctionalTests.test_jinja2_templating +tests.functional.test_functional.FunctionalTests.test_jinja2_templating ... ok +[ INFO ] Got current commit: [f5244f63d4276b8722c050cb25b7e7d0a05aeee0 master] +tests.functional.test_functional.FunctionalTests.test_mark_safe +tests.functional.test_functional.FunctionalTests.test_mark_safe ... ok +[ INFO ] Got parent commit: [a2e157b8c1fec28fbb93b64c59e6a3ad1d4267e3 master~1] +[ INFO ] Getting Bandit baseline results +[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmpvYKdW5'] +Output: None + +tests.functional.test_functional.FunctionalTests.test_mako_templating +tests.functional.test_functional.FunctionalTests.test_mako_templating ... ok tests.functional.test_functional.FunctionalTests.test_subdirectory_okay tests.functional.test_functional.FunctionalTests.test_subdirectory_okay ... ok -No handlers could be found for logger "bandit.core.utils" +[ INFO ] Comparing Bandit results to baseline +[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmpvYKdW5'] +Output: None + +tests.functional.test_functional.FunctionalTests.test_ignore_skip +tests.functional.test_functional.FunctionalTests.test_ignore_skip ... ok +tests.functional.test_functional.FunctionalTests.test_okay +tests.functional.test_functional.FunctionalTests.test_okay ... ok +None +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error ... ok +tests.functional.test_functional.FunctionalTests.test_hashlib_new_insecure_functions +tests.functional.test_functional.FunctionalTests.test_hashlib_new_insecure_functions ... ok +No handlers could be found for logger "bandit.cli.baseline" +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo ... ok +tests.functional.test_functional.FunctionalTests.test_os_popen +tests.functional.test_functional.FunctionalTests.test_os_popen ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files ... ok +tests.unit.core.test_context.ContextTests.test_call_keywords +tests.unit.core.test_context.ContextTests.test_call_keywords ... ok +tests.unit.core.test_manager.ManagerTests.test_create_manager +tests.unit.core.test_manager.ManagerTests.test_create_manager ... ok +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all ... ok +tests.unit.core.test_util.UtilTests.test_get_call_name2 +tests.unit.core.test_util.UtilTests.test_get_call_name2 ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingend +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingend ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical ... ok +tests.unit.core.test_util.UtilTests.test_linerange +tests.unit.core.test_util.UtilTests.test_linerange ... ok tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target ... ok -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: None -[main] INFO cli exclude tests: None -[main] INFO using config: bandit.yaml -[main] INFO running on Python 2.7.16 -[text] INFO Text output written to file: output -tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results -tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results ... ok +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents ... ok +[main] ERROR bandit.yaml : Could not read config file. +tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues +tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable +tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable ... ok +[config] WARNING Config file '/tmp/tmpdSyqWl' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data ... ok +tests.unit.core.test_config.TestInit.test_file_does_not_exist +tests.unit.core.test_config.TestInit.test_file_does_not_exist ... ok +tests.unit.core.test_context.ContextTests.test_statement +tests.unit.core.test_context.ContextTests.test_statement ... ok +[text] INFO Text output written to file: /tmp/tmpmunWxb +[text] INFO Text output written to file: /tmp/tmpmunWxb +[json] INFO JSON output written to file: /tmp/tmp1gL9RH +tests.unit.core.test_manager.ManagerTests.test_compare_baseline +tests.unit.core.test_manager.ManagerTests.test_compare_baseline ... ok +tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt +tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt ... ok +tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid +tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline +tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline ... ok +tests.unit.formatters.test_yaml.YamlFormatterTests.test_report +tests.unit.formatters.test_yaml.YamlFormatterTests.test_report ... ok +tests.functional.test_functional.FunctionalTests.test_hardcoded_tmp +tests.functional.test_functional.FunctionalTests.test_hardcoded_tmp ... ok +tests.functional.test_functional.FunctionalTests.test_paramiko_injection +tests.functional.test_functional.FunctionalTests.test_paramiko_injection ... ok [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [main] INFO Using ini file for excluded paths [main] INFO Using ini file for skipped tests @@ -1869,177 +2080,54 @@ [main] INFO cli exclude tests: skip_test tests.unit.cli.test_main.BanditCLIMainTests.test_main_handle_ini_options tests.unit.cli.test_main.BanditCLIMainTests.test_main_handle_ini_options ... ok -[main] ERROR : -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config ... ok -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: badID -[main] INFO cli exclude tests: None -[main] ERROR Unknown test found in profile: badID -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests ... ok -[config] WARNING Config file '/tmp/tmpHVbKjz' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins -[utils] WARNING Cannot resolve file where 1 is defined -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist ... ok -[text] INFO Text output written to file: /tmp/tmpKh6MeF -tests.unit.core.test_config.TestGetOption.test_levels -tests.unit.core.test_config.TestGetOption.test_levels ... ok -tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir -tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir ... ok -tests.unit.core.test_util.UtilTests.test_linerange -tests.unit.core.test_util.UtilTests.test_linerange ... ok -tests.unit.core.test_util.UtilTests.test_path_for_function_no_module -tests.unit.core.test_util.UtilTests.test_path_for_function_no_module ... ok -tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline -tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline ... ok -tests.functional.test_functional.FunctionalTests.test_code_line_numbers -tests.functional.test_functional.FunctionalTests.test_code_line_numbers ... ok -tests.functional.test_functional.FunctionalTests.test_imports -tests.functional.test_functional.FunctionalTests.test_imports ... ok -No handlers could be found for logger "bandit.cli.baseline" -[main] DEBUG logging initialized -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file ... ok -tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode -tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode ... ok -tests.unit.core.test_config.TestConfigCompat.test_blacklist_error -tests.unit.core.test_config.TestConfigCompat.test_blacklist_error ... ok -tests.unit.core.test_config.TestInit.test_yaml_invalid -tests.unit.core.test_config.TestInit.test_yaml_invalid ... ok -tests.unit.core.test_context.ContextTests.test_call_function_name_qual -tests.unit.core.test_context.ContextTests.test_call_function_name_qual ... ok -tests.unit.core.test_context.ContextTests.test_context_create -tests.unit.core.test_context.ContextTests.test_context_create ... ok tests.unit.core.test_context.ContextTests.test_is_module_imported_like tests.unit.core.test_context.ContextTests.test_is_module_imported_like ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults -tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none ... ok -tests.unit.core.test_util.UtilTests.test_escaped_representation_simple -tests.unit.core.test_util.UtilTests.test_escaped_representation_simple ... ok -tests.unit.core.test_util.UtilTests.test_get_call_name2 -tests.unit.core.test_util.UtilTests.test_get_call_name2 ... ok -tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping -tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping ... ok -tests.functional.test_functional.FunctionalTests.test_binding -tests.functional.test_functional.FunctionalTests.test_binding ... ok -tests.functional.test_functional.FunctionalTests.test_blacklist_pycrypto -tests.functional.test_functional.FunctionalTests.test_blacklist_pycrypto ... ok -tests.functional.test_functional.FunctionalTests.test_dill -tests.functional.test_functional.FunctionalTests.test_dill ... ok -tests.functional.test_functional.FunctionalTests.test_nosec -tests.functional.test_functional.FunctionalTests.test_nosec ... ok -tests.functional.test_functional.FunctionalTests.test_metric_gathering -tests.functional.test_functional.FunctionalTests.test_metric_gathering ... ok -tests.functional.test_functional.FunctionalTests.test_nonsense -tests.functional.test_functional.FunctionalTests.test_nonsense ... ok -tests.functional.test_functional.FunctionalTests.test_cipher_modes -tests.functional.test_functional.FunctionalTests.test_cipher_modes ... ok -tests.functional.test_functional.FunctionalTests.test_okay -tests.functional.test_functional.FunctionalTests.test_okay ... ok -tests.functional.test_functional.FunctionalTests.test_telnet_usage -tests.functional.test_functional.FunctionalTests.test_telnet_usage ... ok -No handlers could be found for logger "bandit.cli.baseline" -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults ... ok -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test ... ok -tests.unit.core.test_config.TestConfigCompat.test_converted_include -tests.unit.core.test_config.TestConfigCompat.test_converted_include ... ok -tests.unit.core.test_context.ContextTests.test_node -tests.unit.core.test_context.ContextTests.test_node ... ok -tests.unit.core.test_context.ContextTests.test_statement -tests.unit.core.test_context.ContextTests.test_statement ... ok -tests.unit.core.test_issue.IssueTests.test_issue_filter_severity -tests.unit.core.test_issue.IssueTests.test_issue_filter_severity ... ok -tests.unit.core.test_issue.IssueTests.test_issue_str -tests.unit.core.test_issue.IssueTests.test_issue_str ... ok +[text] INFO Text output written to file: /tmp/tmpKY56Dq/_temp_output +tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format +tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format ... ok tests.unit.core.test_manager.ManagerTests.test_results_count tests.unit.core.test_manager.ManagerTests.test_results_count ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingend -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingend ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid ... ok -tests.functional.test_functional.FunctionalTests.test_os_exec -tests.functional.test_functional.FunctionalTests.test_os_exec ... ok -tests.functional.test_functional.FunctionalTests.test_hashlib_new_insecure_functions -tests.functional.test_functional.FunctionalTests.test_hashlib_new_insecure_functions ... ok -tests.functional.test_functional.FunctionalTests.test_crypto_md5 -tests.functional.test_functional.FunctionalTests.test_crypto_md5 ... ok -tests.functional.test_functional.FunctionalTests.test_imports_using_importlib -tests.functional.test_functional.FunctionalTests.test_imports_using_importlib ... ok -tests.functional.test_functional.FunctionalTests.test_imports_aliases -tests.functional.test_functional.FunctionalTests.test_imports_aliases ... ok -tests.functional.test_functional.FunctionalTests.test_mktemp -tests.functional.test_functional.FunctionalTests.test_mktemp ... ok -tests.functional.test_functional.FunctionalTests.test_mako_templating -tests.functional.test_functional.FunctionalTests.test_mako_templating ... ok -tests.functional.test_functional.FunctionalTests.test_try_except_continue -tests.functional.test_functional.FunctionalTests.test_try_except_continue ... ok -[ INFO ] No output format specified, using terminal -tests.functional.test_functional.FunctionalTests.test_blacklist_pycryptodome -tests.functional.test_functional.FunctionalTests.test_blacklist_pycryptodome ... ok -[ INFO ] Got current commit: [5f0608cabc5ce54be3b3d00ecda85ee714b18f7f master] -[ ERROR ] Parent commit not available -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_bandit_files -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_bandit_files ... ok -tests.unit.core.test_config.TestGetOption.test_levels_not_exist -tests.unit.core.test_config.TestGetOption.test_levels_not_exist ... ok -tests.unit.core.test_context.ContextTests.test_string_val -tests.unit.core.test_context.ContextTests.test_string_val ... ok -tests.unit.core.test_issue.IssueTests.test_get_code -tests.unit.core.test_issue.IssueTests.test_get_code ... ok -tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence -tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence ... ok -tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile -tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one ... ok -tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed -tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed ... ok -tests.functional.test_functional.FunctionalTests.test_flask_debug_true -tests.functional.test_functional.FunctionalTests.test_flask_debug_true ... ok -tests.unit.formatters.test_yaml.YamlFormatterTests.test_report -tests.unit.formatters.test_yaml.YamlFormatterTests.test_report ... ok -tests.functional.test_functional.FunctionalTests.test_eval -tests.functional.test_functional.FunctionalTests.test_eval ... ok -tests.functional.test_functional.FunctionalTests.test_urlopen -tests.functional.test_functional.FunctionalTests.test_urlopen ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_target -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_target ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values ... ok -No handlers could be found for logger "bandit.core.config" -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data ... ok -tests.unit.core.test_context.ContextTests.test_call_function_name -tests.unit.core.test_context.ContextTests.test_call_function_name ... ok -tests.unit.core.test_context.ContextTests.test_function_def_defaults_qual -tests.unit.core.test_context.ContextTests.test_function_def_defaults_qual ... ok tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id ... ok -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node ... ok -tests.unit.formatters.test_csv.CsvFormatterTests.test_report -tests.unit.formatters.test_csv.CsvFormatterTests.test_report ... ok -Run started:2021-11-29 06:31:34.678334 +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one ... ok +tests.functional.test_functional.FunctionalTests.test_metric_gathering +tests.functional.test_functional.FunctionalTests.test_metric_gathering ... ok +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_syms +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_syms ... ok +[utils] WARNING Cannot resolve file path for module sys +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys ... ok +tests.unit.core.test_util.UtilTests.test_path_for_function_no_file +tests.unit.core.test_util.UtilTests.test_path_for_function_no_file ... ok +[xml] INFO XML output written to file: /tmp/tmpFmnrcb +tests.unit.formatters.test_text.TextFormatterTests.test_output_issue +tests.unit.formatters.test_text.TextFormatterTests.test_output_issue ... ok +tests.unit.formatters.test_xml.XmlFormatterTests.test_report +tests.unit.formatters.test_xml.XmlFormatterTests.test_report ... ok +tests.functional.test_functional.FunctionalTests.test_popen_wrappers +tests.functional.test_functional.FunctionalTests.test_popen_wrappers ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_value +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_value ... ok +tests.unit.core.test_context.ContextTests.test__get_literal_value +tests.unit.core.test_context.ContextTests.test__get_literal_value ... ok +tests.unit.core.test_context.ContextTests.test_context_create +tests.unit.core.test_context.ContextTests.test_context_create ... ok +tests.unit.core.test_issue.IssueTests.test_issue_as_dict +tests.unit.core.test_issue.IssueTests.test_issue_as_dict ... ok +tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence +tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence ... ok +tests.unit.core.test_issue.IssueTests.test_issue_str +tests.unit.core.test_issue.IssueTests.test_issue_str ... ok +tests.unit.core.test_manager.ManagerTests.test_is_file_included +tests.unit.core.test_manager.ManagerTests.test_is_file_included ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id ... ok +Run started:2023-01-01 12:58:22.758475  Test results: ISSUE_OUTPUT_TEXT @@ -2073,9 +2161,276 @@ Files skipped (0): tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_baseline tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_baseline ... ok -tests.functional.test_functional.FunctionalTests.test_hardcoded_passwords -tests.functional.test_functional.FunctionalTests.test_hardcoded_passwords ... ok -Run started:2021-11-29 06:31:34.681005 +tests.functional.test_functional.FunctionalTests.test_host_key_verification +tests.functional.test_functional.FunctionalTests.test_host_key_verification ... ok +tests.functional.test_functional.FunctionalTests.test_imports_from +tests.functional.test_functional.FunctionalTests.test_imports_from ... ok +tests.functional.test_functional.FunctionalTests.test_os_startfile +tests.functional.test_functional.FunctionalTests.test_os_startfile ... ok +tests.functional.test_functional.FunctionalTests.test_telnet_usage +tests.functional.test_functional.FunctionalTests.test_telnet_usage ... ok +tests.functional.test_functional.FunctionalTests.test_pickle +tests.functional.test_functional.FunctionalTests.test_pickle ... ok +tests.functional.test_functional.FunctionalTests.test_sql_statements +tests.functional.test_functional.FunctionalTests.test_sql_statements ... ok +tests.functional.test_functional.FunctionalTests.test_partial_path +tests.functional.test_functional.FunctionalTests.test_partial_path ... ok +No handlers could be found for logger "bandit.cli.baseline" +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument ... ok +tests.unit.core.test_config.TestConfigCompat.test_blacklist_error +tests.unit.core.test_config.TestConfigCompat.test_blacklist_error ... ok +tests.unit.core.test_config.TestGetOption.test_levels +tests.unit.core.test_config.TestGetOption.test_levels ... ok +tests.unit.core.test_config.TestGetSetting.test_not_exist +tests.unit.core.test_config.TestGetSetting.test_not_exist ... ok +tests.unit.core.test_context.ContextTests.test_call_args_count +tests.unit.core.test_context.ContextTests.test_call_args_count ... ok +tests.unit.core.test_issue.IssueTests.test_issue_filter_severity +tests.unit.core.test_issue.IssueTests.test_issue_filter_severity ... ok +tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches +tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none ... ok +tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed +tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot ... ok +tests.functional.test_functional.FunctionalTests.test_tempnam +tests.functional.test_functional.FunctionalTests.test_tempnam ... ok +tests.functional.test_functional.FunctionalTests.test_yaml +tests.functional.test_functional.FunctionalTests.test_yaml ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: None +[main] INFO cli exclude tests: None +[main] INFO using config: bandit.yaml +[main] INFO running on Python 2.7.16 +[text] INFO Text output written to file: output +tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results +tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: None +[main] INFO cli exclude tests: None +[main] WARNING Baseline must be used with one of the following formats: ['screen', 'custom', 'json', 'html', 'txt'] +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format ... ok +[config] WARNING Config file '/tmp/tmpeBu8ZV' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test ... ok +tests.unit.core.test_context.ContextTests.test_call_args +tests.unit.core.test_context.ContextTests.test_call_args ... ok +tests.unit.core.test_manager.ManagerTests.test_matches_globlist +tests.unit.core.test_manager.ManagerTests.test_matches_globlist ... ok +tests.unit.core.test_util.UtilTests.test_escaped_representation_simple +tests.unit.core.test_util.UtilTests.test_escaped_representation_simple ... ok +[utils] WARNING Unable to parse config file /tmp/tmp92HmVP or missing [bandit] section +tests.unit.core.test_util.UtilTests.test_parse_ini_file +tests.unit.core.test_util.UtilTests.test_parse_ini_file ... ok +[csv] INFO CSV output written to file: /tmp/tmpDXMfnY +tests.unit.core.test_util.UtilTests.test_path_for_function +tests.unit.core.test_util.UtilTests.test_path_for_function ... ok +tests.unit.formatters.test_csv.CsvFormatterTests.test_report +tests.unit.formatters.test_csv.CsvFormatterTests.test_report ... ok +tests.functional.test_functional.FunctionalTests.test_unverified_context +tests.functional.test_functional.FunctionalTests.test_unverified_context ... ok +No handlers could be found for logger "bandit.core.utils" +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found +tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found ... ok +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue ... ok +tests.unit.core.test_context.ContextTests.test_repr +tests.unit.core.test_context.ContextTests.test_repr ... ok +tests.unit.core.test_issue.IssueTests.test_issue_create +tests.unit.core.test_issue.IssueTests.test_issue_create ... ok +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none ... ok +tests.unit.core.test_util.UtilTests.test_namespace_path_join +tests.unit.core.test_util.UtilTests.test_namespace_path_join ... ok +tests.functional.test_functional.FunctionalTests.test_os_chmod +tests.functional.test_functional.FunctionalTests.test_os_chmod ... ok +tests.functional.test_functional.FunctionalTests.test_requests_ssl_verify_disabled +tests.functional.test_functional.FunctionalTests.test_requests_ssl_verify_disabled ... ok +No handlers could be found for logger "bandit.cli.baseline" +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file ... ok +tests.functional.test_functional.FunctionalTests.test_django_sql_injection +tests.functional.test_functional.FunctionalTests.test_django_sql_injection ... ok +tests.functional.test_functional.FunctionalTests.test_django_xss_secure +tests.functional.test_functional.FunctionalTests.test_django_xss_secure ... ok +[ INFO ] No output format specified, using terminal +tests.functional.test_functional.FunctionalTests.test_wildcard_injection +tests.functional.test_functional.FunctionalTests.test_wildcard_injection ... ok + +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults ... ok +tests.unit.core.test_context.ContextTests.test_call_function_name +tests.unit.core.test_context.ContextTests.test_call_function_name ... ok +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults +tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include ... ok +[ INFO ] Got current commit: [0a421b48a6e5c7885fc254ef9c2b44b7ed82c6a7 master] +No handlers could be found for logger "bandit.core.utils" +tests.unit.core.test_util.UtilTests.test_path_for_function_no_module +tests.unit.core.test_util.UtilTests.test_path_for_function_no_module ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_no_issues +tests.unit.formatters.test_text.TextFormatterTests.test_no_issues ... ok +[ ERROR ] Parent commit not available +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit ... ok +usage: bandit-config-generator [-h] [--show-defaults] [-o OUTPUT_FILE] + [-t TESTS] [-s SKIPS] + +Bandit Config Generator + + This tool is used to generate an optional profile. The profile may be used + to include or skip tests and override values for plugins. + + When used to store an output profile, this tool will output a template that + includes all plugins and their default settings. Any settings which aren't + being overridden can be safely removed from the profile and default values + will be used. Bandit will prefer settings from the profile over the built + in values. + +optional arguments: + -h, --help show this help message and exit + --show-defaults show the default settings values for each plugin but do not output a profile + -o OUTPUT_FILE, --out OUTPUT_FILE + output file to save profile + -t TESTS, --tests TESTS + list of test names to run + -s SKIPS, --skip SKIPS + list of test names to skip +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val ... ok +tests.unit.core.test_context.ContextTests.test_is_module_being_imported +tests.unit.core.test_context.ContextTests.test_is_module_being_imported ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist ... ok +tests.functional.test_functional.FunctionalTests.test_urlopen +tests.functional.test_functional.FunctionalTests.test_urlopen ... ok +tests.unit.core.test_util.UtilTests.test_get_call_name1 +tests.unit.core.test_util.UtilTests.test_get_call_name1 ... ok +tests.unit.core.test_util.UtilTests.test_namespace_path_split +tests.unit.core.test_util.UtilTests.test_namespace_path_split ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline +tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline ... ok +tests.functional.test_functional.FunctionalTests.test_flask_debug_true +tests.functional.test_functional.FunctionalTests.test_flask_debug_true ... ok +No handlers could be found for logger "bandit.cli.baseline" +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo ... ok +No handlers could be found for logger "bandit.cli.baseline" +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure ... ok +[ INFO ] No output format specified, using terminal +[ ERROR ] Bandit baseline must be called from a git project root +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: None +[main] INFO cli exclude tests: None +[main] INFO using config: bandit.yaml +[main] INFO running on Python 2.7.16 +[text] INFO Text output written to file: output +tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results +tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results ... ok +[config] WARNING Config file '/tmp/tmpHVxuFX' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude ... ok +tests.functional.test_functional.FunctionalTests.test_ciphers +tests.functional.test_functional.FunctionalTests.test_ciphers ... ok +[config] WARNING Config file '/tmp/tmpRBYjoi' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist ... ok +tests.unit.core.test_issue.IssueTests.test_get_code +tests.unit.core.test_issue.IssueTests.test_get_code ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude ... ok +[html] INFO HTML output written to file: /tmp/tmpffPJAK +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none ... ok +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node ... ok +tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable +tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms ... ok +[ INFO ] No output format specified, using terminal +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped ... ok +[ ERROR ] Unable to get current or parent commit +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure ... ok +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data ... ok +tests.functional.test_functional.FunctionalTests.test_eval +tests.functional.test_functional.FunctionalTests.test_eval ... ok +tests.unit.core.test_config.TestInit.test_settings +tests.unit.core.test_config.TestInit.test_settings ... ok +tests.unit.core.test_context.ContextTests.test_check_call_arg_value +tests.unit.core.test_context.ContextTests.test_check_call_arg_value ... ok +tests.unit.core.test_context.ContextTests.test_is_module_imported_exact +tests.unit.core.test_context.ContextTests.test_is_module_imported_exact ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir ... ok +tests.functional.test_functional.FunctionalTests.test_django_sql_injection_raw +tests.functional.test_functional.FunctionalTests.test_django_sql_injection_raw ... ok +tests.functional.test_functional.FunctionalTests.test_os_system +tests.functional.test_functional.FunctionalTests.test_os_system ... ok +tests.functional.test_functional.FunctionalTests.test_ssl_insecure_version +tests.functional.test_functional.FunctionalTests.test_ssl_insecure_version ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_init_extensions +tests.unit.cli.test_main.BanditCLIMainTests.test_init_extensions ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: None +[main] INFO cli exclude tests: None +[main] WARNING Could not open baseline report: base.json +tests.unit.cli.test_main.BanditCLIMainTests.test_main_baseline_ioerror +tests.unit.cli.test_main.BanditCLIMainTests.test_main_baseline_ioerror ... ok +[text] INFO Text output written to file: /tmp/tmpDBOkSg/_temp_output.txt +tests.unit.core.test_config.TestGetOption.test_levels_not_exist +tests.unit.core.test_config.TestGetOption.test_levels_not_exist ... ok +tests.unit.core.test_issue.IssueTests.test_matches_issue +tests.unit.core.test_issue.IssueTests.test_matches_issue ... ok +tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir +tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir ... ok +[html] INFO HTML output written to file: /tmp/tmpXpEGn7 +[screen] INFO Screen formatter output was not written to file: /tmp/tmpY2VIKu, consider '-f txt' +[screen] INFO Screen formatter output was not written to file: /tmp/tmpY2VIKu, consider '-f txt' +tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format +tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend ... ok +tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping +tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping ... ok +Run started:2023-01-01 12:58:25.410762 Files in scope (1): binding.py (score: {SEVERITY: 1, CONFIDENCE: 1}) Files excluded (1): @@ -2106,54 +2461,128 @@ abc.py (File is bad) tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline ... ok -tests.functional.test_functional.FunctionalTests.test_sql_statements -tests.functional.test_functional.FunctionalTests.test_sql_statements ... ok -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger ... ok -tests.functional.test_functional.FunctionalTests.test_ignore_skip -tests.functional.test_functional.FunctionalTests.test_ignore_skip ... ok -[ INFO ] No output format specified, using terminal -[ ERROR ] Current working directory is dirty and must be resolved -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo ... ok -[ INFO ] No output format specified, using terminal -[ ERROR ] Bandit baseline must be called from a git project root -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo ... ok -tests.functional.test_functional.FunctionalTests.test_os_startfile -tests.functional.test_functional.FunctionalTests.test_os_startfile ... ok -tests.functional.test_functional.FunctionalTests.test_os_chmod -tests.functional.test_functional.FunctionalTests.test_os_chmod ... ok - -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults ... ok -tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger -tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger ... ok +tests.functional.test_functional.FunctionalTests.test_httpoxy +tests.functional.test_functional.FunctionalTests.test_httpoxy ... ok +tests.functional.test_functional.FunctionalTests.test_django_xss_insecure +tests.functional.test_functional.FunctionalTests.test_django_xss_insecure ... ok +tests.functional.test_functional.FunctionalTests.test_nosec +tests.functional.test_functional.FunctionalTests.test_nosec ... ok +tests.functional.test_functional.FunctionalTests.test_xml +tests.functional.test_functional.FunctionalTests.test_xml ... ok +[main] ERROR : +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config ... ok +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults ... ok +[config] ERROR while parsing a flow sequence + in "/tmp/tmpVPVEu0", line 1, column 3 +expected ',' or ']', but got '' + in "/tmp/tmpVPVEu0", line 1, column 14 +tests.unit.core.test_config.TestInit.test_yaml_invalid +tests.unit.core.test_config.TestInit.test_yaml_invalid ... ok tests.unit.core.test_context.ContextTests.test_get_call_arg_at_position tests.unit.core.test_context.ContextTests.test_get_call_arg_at_position ... ok -tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format -tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format ... ok -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str ... ok -tests.unit.core.test_util.UtilTests.test_get_call_name1 -tests.unit.core.test_util.UtilTests.test_get_call_name1 ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_syms -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_syms ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms ... ok -tests.functional.test_functional.FunctionalTests.test_os_system -tests.functional.test_functional.FunctionalTests.test_os_system ... ok -tests.functional.test_functional.FunctionalTests.test_baseline_filter -tests.functional.test_functional.FunctionalTests.test_baseline_filter ... ok -tests.functional.test_functional.FunctionalTests.test_imports_function -tests.functional.test_functional.FunctionalTests.test_imports_function ... ok -tests.functional.test_functional.FunctionalTests.test_os_spawn -tests.functional.test_functional.FunctionalTests.test_os_spawn ... ok -No handlers could be found for logger "root" -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files ... ok +tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile +tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingmid +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingmid ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path ... ok +tests.functional.test_functional.FunctionalTests.test_subprocess_shell +tests.functional.test_functional.FunctionalTests.test_subprocess_shell ... ok +tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key +tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_bandit_files +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_bandit_files ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: badID +[main] INFO cli exclude tests: None +[main] ERROR Unknown test found in profile: badID +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests ... ok +[config] WARNING Config file '/tmp/tmppilD2g' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_bad_yaml +tests.unit.core.test_config.TestConfigCompat.test_bad_yaml ... ok +[config] WARNING Config file '/tmp/tmpTWs4_Z' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_include +tests.unit.core.test_config.TestConfigCompat.test_converted_include ... ok +tests.unit.core.test_context.ContextTests.test_call_function_name_qual +tests.unit.core.test_context.ContextTests.test_call_function_name_qual ... ok +tests.unit.core.test_context.ContextTests.test_function_def_defaults_qual +tests.unit.core.test_context.ContextTests.test_function_def_defaults_qual ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files ... ok +tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue +tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue ... ok + +---------------------------------------------------------------------- +Ran 226 tests in 12.892s + +OK ++ python2-stestr slowest +Test id Runtime (s) +---------------------------------------------------------------------------- ----------- +tests.functional.test_functional.FunctionalTests.test_django_xss_insecure 4.265 +tests.functional.test_functional.FunctionalTests.test_django_xss_secure 3.169 +tests.functional.test_functional.FunctionalTests.test_django_sql_injection 2.753 +tests.functional.test_functional.FunctionalTests.test_ciphers 2.673 +tests.functional.test_functional.FunctionalTests.test_xml 2.512 +tests.functional.test_functional.FunctionalTests.test_subprocess_shell 2.149 +tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key 1.690 +tests.functional.test_functional.FunctionalTests.test_popen_wrappers 1.365 +tests.functional.test_functional.FunctionalTests.test_urlopen 1.341 +tests.functional.test_functional.FunctionalTests.test_pickle 1.300 ++ rm -rf .stestr ++ for pyvers in ${PYTHONS} ${PYTHON3S} ++ '[' 3.7 = disabled ']' +++ cut -d. -f1 +++ echo 3.7 ++ PYMAJOR=3 ++ echo '===> Testing with python (python3)' +===> Testing with python (python3) ++ '[' 3 = 3 ']' +++ pwd ++ '[' -d /build/bandit-1.5.1/debian/tmp/usr/lib/python3/dist-packages ']' ++ '[' -e .stestr.conf ']' ++ rm -rf .stestr ++ subunit2pyunit ++ PYTHON=python3.7 ++ python3-stestr run --subunit 'tests\.(?!(.*unit\.cli\.test_baseline\.BanditBaselineToolTests\.test_bandit_baseline.*|.*functional\.test_runtime.*|.*functional\.test_baseline.*))' +tests.functional.test_functional.FunctionalTests.test_dill +tests.functional.test_functional.FunctionalTests.test_dill ... ok +tests.functional.test_functional.FunctionalTests.test_mark_safe +tests.functional.test_functional.FunctionalTests.test_mark_safe ... ok tests.functional.test_functional.FunctionalTests.test_django_sql_injection_raw tests.functional.test_functional.FunctionalTests.test_django_sql_injection_raw ... ok +tests.functional.test_functional.FunctionalTests.test_code_line_numbers +tests.functional.test_functional.FunctionalTests.test_code_line_numbers ... ok +tests.functional.test_functional.FunctionalTests.test_blacklist_input +tests.functional.test_functional.FunctionalTests.test_blacklist_input ... ok +tests.functional.test_functional.FunctionalTests.test_hashlib_new_insecure_functions +tests.functional.test_functional.FunctionalTests.test_hashlib_new_insecure_functions ... ok +tests.functional.test_functional.FunctionalTests.test_host_key_verification +tests.functional.test_functional.FunctionalTests.test_host_key_verification ... ok +tests.functional.test_functional.FunctionalTests.test_hardcoded_passwords +tests.functional.test_functional.FunctionalTests.test_hardcoded_passwords ... ok +tests.functional.test_functional.FunctionalTests.test_mktemp +tests.functional.test_functional.FunctionalTests.test_mktemp ... ok +tests.functional.test_functional.FunctionalTests.test_imports_using_importlib +tests.functional.test_functional.FunctionalTests.test_imports_using_importlib ... ok +Unable to parse config file /tmp/tmpqjcv9yp3 or missing [bandit] section +Multiple .bandit files found - scan separately or choose one with --ini + /tmp/tmpe_h638a0/.bandit, /tmp/tmpe_h638a0/second_config_directory/.bandit +tests.functional.test_functional.FunctionalTests.test_metric_gathering +tests.functional.test_functional.FunctionalTests.test_metric_gathering ... ok +tests.functional.test_functional.FunctionalTests.test_partial_path +tests.functional.test_functional.FunctionalTests.test_partial_path ... ok tests.functional.test_functional.FunctionalTests.test_multiline_code tests.functional.test_functional.FunctionalTests.test_multiline_code ... ok [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. @@ -2161,288 +2590,247 @@ [main] INFO profile exclude tests: None [main] INFO cli include tests: None [main] INFO cli exclude tests: None -[main] INFO using config: bandit.yaml -[main] INFO running on Python 2.7.16 +[main] WARNING Could not open baseline report: base.json [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [main] INFO profile include tests: None [main] INFO profile exclude tests: None [main] INFO cli include tests: None [main] INFO cli exclude tests: None +[main] INFO using config: bandit.yaml +[main] INFO running on Python 3.7.3 [text] INFO Text output written to file: output -tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results -tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results ... ok -tests.unit.core.test_issue.IssueTests.test_issue_as_dict -tests.unit.core.test_issue.IssueTests.test_issue_as_dict ... ok -tests.unit.core.test_issue.IssueTests.test_matches_issue -tests.unit.core.test_issue.IssueTests.test_matches_issue ... ok -[main] WARNING Could not open baseline report: base.json +tests.functional.test_functional.FunctionalTests.test_urlopen +tests.functional.test_functional.FunctionalTests.test_urlopen ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_main_baseline_ioerror tests.unit.cli.test_main.BanditCLIMainTests.test_main_baseline_ioerror ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline ... ok -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success ... ok -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: None -[main] INFO cli exclude tests: badID -[main] ERROR Unknown test found in profile: badID -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests ... ok -tests.unit.core.test_context.ContextTests.test_is_module_being_imported -tests.unit.core.test_context.ContextTests.test_is_module_being_imported ... ok -tests.unit.core.test_issue.IssueTests.test_issue_create -tests.unit.core.test_issue.IssueTests.test_issue_create ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include ... ok -tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches -tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches ... ok -tests.unit.core.test_util.UtilTests.test_check_ast_node_good -tests.unit.core.test_util.UtilTests.test_check_ast_node_good ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path ... ok -tests.unit.core.test_util.UtilTests.test_namespace_path_join -tests.unit.core.test_util.UtilTests.test_namespace_path_join ... ok -tests.unit.core.test_util.UtilTests.test_namespace_path_split -tests.unit.core.test_util.UtilTests.test_namespace_path_split ... ok -tests.unit.formatters.test_text.TextFormatterTests.test_output_issue -tests.unit.formatters.test_text.TextFormatterTests.test_output_issue ... ok -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json ... ok -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat ... ok -[text] INFO Text output written to file: /tmp/tmpRdxrxq -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys ... ok -[text] INFO Text output written to file: /tmp/tmpRdxrxq -tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline -tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline ... ok -[utils] WARNING Unable to parse config file /tmp/tmpYA8kiG or missing [bandit] section -tests.unit.core.test_util.UtilTests.test_parse_ini_file -tests.unit.core.test_util.UtilTests.test_parse_ini_file ... ok -[json] INFO JSON output written to file: /tmp/tmpezRWEK -tests.unit.formatters.test_json.JsonFormatterTests.test_report -tests.unit.formatters.test_json.JsonFormatterTests.test_report ... ok -tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue -tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue ... ok -tests.functional.test_functional.FunctionalTests.test_paramiko_injection -tests.functional.test_functional.FunctionalTests.test_paramiko_injection ... ok -tests.functional.test_functional.FunctionalTests.test_host_key_verification -tests.functional.test_functional.FunctionalTests.test_host_key_verification ... ok -tests.functional.test_functional.FunctionalTests.test_tempnam -tests.functional.test_functional.FunctionalTests.test_tempnam ... ok -tests.functional.test_functional.FunctionalTests.test_mark_safe -tests.functional.test_functional.FunctionalTests.test_mark_safe ... ok -tests.functional.test_functional.FunctionalTests.test_django_xss_secure -tests.functional.test_functional.FunctionalTests.test_django_xss_secure ... ok -tests.functional.test_functional.FunctionalTests.test_imports_from -tests.functional.test_functional.FunctionalTests.test_imports_from ... ok +tests.functional.test_functional.FunctionalTests.test_unverified_context +tests.functional.test_functional.FunctionalTests.test_unverified_context ... ok tests.functional.test_functional.FunctionalTests.test_random_module tests.functional.test_functional.FunctionalTests.test_random_module ... ok [ INFO ] No output format specified, using terminal -[ ERROR ] Unable to get current or parent commit -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_init_extensions -tests.unit.cli.test_main.BanditCLIMainTests.test_init_extensions ... ok -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found -tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found ... ok -[config] WARNING Config file '/tmp/tmpKp7YeF' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[ ERROR ] Bandit baseline must be called from a git project root +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results +tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results ... ok +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue ... ok +[config] WARNING Config file '/tmp/tmpkh12gmb0' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.functional.test_functional.FunctionalTests.test_try_except_pass +tests.functional.test_functional.FunctionalTests.test_try_except_pass ... ok +Config file '/tmp/tmple60vmzx' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Legacy blacklist data found in config, overriding data plugins tests.unit.core.test_config.TestConfigCompat.test_converted_exclude tests.unit.core.test_config.TestConfigCompat.test_converted_exclude ... ok -[config] WARNING Config file '/tmp/tmpeWFKxd' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins -tests.unit.core.test_config.TestConfigCompat.test_deprecation_message -tests.unit.core.test_config.TestConfigCompat.test_deprecation_message ... ok -tests.unit.core.test_config.TestGetSetting.test_not_exist -tests.unit.core.test_config.TestGetSetting.test_not_exist ... ok -tests.unit.core.test_manager.ManagerTests.test_create_manager -tests.unit.core.test_manager.ManagerTests.test_create_manager ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files ... ok -tests.unit.core.test_manager.ManagerTests.test_is_file_included -tests.unit.core.test_manager.ManagerTests.test_is_file_included ... ok -tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt -tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt ... ok -[xml] INFO XML output written to file: /tmp/tmpwhOyFg -tests.unit.formatters.test_xml.XmlFormatterTests.test_report -tests.unit.formatters.test_xml.XmlFormatterTests.test_report ... ok -tests.functional.test_functional.FunctionalTests.test_wildcard_injection -tests.functional.test_functional.FunctionalTests.test_wildcard_injection ... ok -tests.functional.test_functional.FunctionalTests.test_jinja2_templating -tests.functional.test_functional.FunctionalTests.test_jinja2_templating ... ok -No handlers could be found for logger "bandit.cli.baseline" -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file ... ok -tests.functional.test_functional.FunctionalTests.test_ciphers -tests.functional.test_functional.FunctionalTests.test_ciphers ... ok -[ INFO ] No output format specified, using terminal -[ INFO ] Got current commit: [c4a01bcfc13264aea2ac97b987da08181dacc354 master] -tests.functional.test_functional.FunctionalTests.test_partial_path -tests.functional.test_functional.FunctionalTests.test_partial_path ... ok -[ INFO ] Got parent commit: [afad6e607726128aae4dbaa41406620a47f886da master~1] -[ INFO ] Getting Bandit baseline results -[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmpzIIj56'] -Output: None - -[ INFO ] Comparing Bandit results to baseline -[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmpzIIj56'] -Output: None - -None -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error ... ok -tests.unit.core.test_context.ContextTests.test_call_args -tests.unit.core.test_context.ContextTests.test_call_args ... ok -tests.unit.core.test_context.ContextTests.test_call_args_count -tests.unit.core.test_context.ContextTests.test_call_args_count ... ok -tests.unit.core.test_context.ContextTests.test_call_keywords -tests.unit.core.test_context.ContextTests.test_call_keywords ... ok +tests.unit.core.test_context.ContextTests.test_node +tests.unit.core.test_context.ContextTests.test_node ... ok tests.unit.core.test_manager.ManagerTests.test_discover_files_include tests.unit.core.test_manager.ManagerTests.test_discover_files_include ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist ... ok -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped ... ok -tests.functional.test_functional.FunctionalTests.test_django_xss_insecure -tests.functional.test_functional.FunctionalTests.test_django_xss_insecure ... ok -tests.functional.test_functional.FunctionalTests.test_exec -tests.functional.test_functional.FunctionalTests.test_exec ... ok -tests.functional.test_functional.FunctionalTests.test_pickle -tests.functional.test_functional.FunctionalTests.test_pickle ... ok -tests.functional.test_functional.FunctionalTests.test_ftp_usage -tests.functional.test_functional.FunctionalTests.test_ftp_usage ... ok -tests.functional.test_functional.FunctionalTests.test_subprocess_shell -tests.functional.test_functional.FunctionalTests.test_subprocess_shell ... ok -tests.functional.test_functional.FunctionalTests.test_try_except_pass -tests.functional.test_functional.FunctionalTests.test_try_except_pass ... ok -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults ... ok -tests.unit.core.test_config.TestInit.test_settings -tests.unit.core.test_config.TestInit.test_settings ... ok -tests.unit.core.test_context.ContextTests.test__get_literal_value -tests.unit.core.test_context.ContextTests.test__get_literal_value ... ok -No handlers could be found for logger "bandit.core.manager" -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip ... ok +tests.unit.core.test_config.TestConfigCompat.test_bad_yaml +tests.unit.core.test_config.TestConfigCompat.test_bad_yaml ... ok +tests.unit.core.test_config.TestGetOption.test_levels +tests.unit.core.test_config.TestGetOption.test_levels ... ok +tests.unit.core.test_context.ContextTests.test_context_create +tests.unit.core.test_context.ContextTests.test_context_create ... ok +tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile +tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one ... ok +tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable +tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable ... ok +tests.unit.core.test_manager.ManagerTests.test_matches_globlist +tests.unit.core.test_manager.ManagerTests.test_matches_globlist ... ok tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none ... ok tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type ... ok -tests.unit.core.test_util.UtilTests.test_get_call_name3 -tests.unit.core.test_util.UtilTests.test_get_call_name3 ... ok -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents ... ok +tests.functional.test_functional.FunctionalTests.test_baseline_filter +tests.functional.test_functional.FunctionalTests.test_baseline_filter ... ok +tests.functional.test_functional.FunctionalTests.test_blacklist_pycryptodome +tests.functional.test_functional.FunctionalTests.test_blacklist_pycryptodome ... ok +tests.unit.core.test_util.UtilTests.test_deepgetattr +tests.unit.core.test_util.UtilTests.test_deepgetattr ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path ... ok +tests.functional.test_functional.FunctionalTests.test_asserts +tests.functional.test_functional.FunctionalTests.test_asserts ... ok + +tests.unit.formatters.test_json.JsonFormatterTests.test_report +tests.unit.formatters.test_json.JsonFormatterTests.test_report ... ok +tests.functional.test_functional.FunctionalTests.test_flask_debug_true +tests.functional.test_functional.FunctionalTests.test_flask_debug_true ... ok +tests.functional.test_functional.FunctionalTests.test_ftp_usage +tests.functional.test_functional.FunctionalTests.test_ftp_usage ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings ... ok +tests.unit.core.test_issue.IssueTests.test_get_code +tests.unit.core.test_issue.IssueTests.test_get_code ... ok +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json ... ok +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node ... ok +tests.functional.test_functional.FunctionalTests.test_binding +tests.functional.test_functional.FunctionalTests.test_binding ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults +tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir ... ok +tests.unit.core.test_util.UtilTests.test_linerange +tests.unit.core.test_util.UtilTests.test_linerange ... ok tests.functional.test_functional.FunctionalTests.test_ssl_insecure_version tests.functional.test_functional.FunctionalTests.test_ssl_insecure_version ... ok +tests.functional.test_functional.FunctionalTests.test_mako_templating +tests.functional.test_functional.FunctionalTests.test_mako_templating ... ok +Cannot resolve file path for module sys +tests.unit.core.test_util.UtilTests.test_path_for_function_no_file +tests.unit.core.test_util.UtilTests.test_path_for_function_no_file ... ok +tests.functional.test_functional.FunctionalTests.test_sql_statements +tests.functional.test_functional.FunctionalTests.test_sql_statements ... ok +Bandit baseline must be called from a git project root +[main] DEBUG logging initialized +tests.functional.test_functional.FunctionalTests.test_blacklist_pycrypto +tests.functional.test_functional.FunctionalTests.test_blacklist_pycrypto ... ok +tests.functional.test_functional.FunctionalTests.test_django_sql_injection +tests.functional.test_functional.FunctionalTests.test_django_sql_injection ... ok tests.functional.test_functional.FunctionalTests.test_xml tests.functional.test_functional.FunctionalTests.test_xml ... ok [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +tests.functional.test_functional.FunctionalTests.test_skip +tests.functional.test_functional.FunctionalTests.test_skip ... ok +tests.functional.test_functional.FunctionalTests.test_tempnam +tests.functional.test_functional.FunctionalTests.test_tempnam ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_no_issues +tests.unit.formatters.test_text.TextFormatterTests.test_no_issues ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline +tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline +tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO profile include tests: None +[main] INFO profile exclude tests: None +[main] INFO cli include tests: None +[main] INFO cli exclude tests: badID +[main] ERROR Unknown test found in profile: badID +tests.functional.test_functional.FunctionalTests.test_hardcoded_tmp +tests.functional.test_functional.FunctionalTests.test_hardcoded_tmp ... ok +tests.functional.test_functional.FunctionalTests.test_wildcard_injection +tests.functional.test_functional.FunctionalTests.test_wildcard_injection ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found +tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found ... ok +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo ... ok +tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode +tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode ... ok +tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir +tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir ... ok +tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format +tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific ... ok +tests.unit.core.test_util.UtilTests.test_check_ast_node_good +tests.unit.core.test_util.UtilTests.test_check_ast_node_good ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingmid +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingmid ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical ... ok +tests.unit.formatters.test_text.TextFormatterTests.test_output_issue +tests.unit.formatters.test_text.TextFormatterTests.test_output_issue ... ok +tests.functional.test_functional.FunctionalTests.test_jinja2_templating +tests.functional.test_functional.FunctionalTests.test_jinja2_templating ... ok +[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +tests.functional.test_functional.FunctionalTests.test_imports_aliases +tests.functional.test_functional.FunctionalTests.test_imports_aliases ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger +tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val ... ok [main] INFO profile include tests: None [main] INFO profile exclude tests: None [main] INFO cli include tests: None [main] INFO cli exclude tests: None -[main] WARNING Baseline must be used with one of the following formats: ['screen', 'custom', 'json', 'html', 'txt'] -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format ... ok -[config] WARNING Config file '/tmp/tmpsVeVzq' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins -tests.unit.core.test_config.TestConfigCompat.test_bad_yaml -tests.unit.core.test_config.TestConfigCompat.test_bad_yaml ... ok -[config] WARNING Config file '/tmp/tmp1PzXBX' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[main] INFO using config: bandit.yaml +[main] INFO running on Python 3.7.3 +[text] INFO Text output written to file: output +[config] WARNING Config file '/tmp/tmprofhyxpa' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests ... ok [config] WARNING Legacy blacklist data found in config, overriding data plugins -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test ... ok -tests.unit.core.test_context.ContextTests.test_repr -tests.unit.core.test_context.ContextTests.test_repr ... ok +tests.functional.test_functional.FunctionalTests.test_nosec +tests.functional.test_functional.FunctionalTests.test_nosec ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results +tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results ... ok +tests.unit.core.test_context.ContextTests.test_function_def_defaults_qual +tests.unit.core.test_context.ContextTests.test_function_def_defaults_qual ... ok +tests.unit.core.test_context.ContextTests.test_is_module_being_imported +tests.unit.core.test_context.ContextTests.test_is_module_being_imported ... ok +tests.unit.core.test_issue.IssueTests.test_issue_create +tests.unit.core.test_issue.IssueTests.test_issue_create ... ok +tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed +tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed ... ok +tests.functional.test_functional.FunctionalTests.test_os_spawn +tests.functional.test_functional.FunctionalTests.test_os_spawn ... ok +[screen] INFO Screen formatter output was not written to file: /tmp/tmp6s6w9qg0, consider '-f txt' +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms ... ok +tests.functional.test_functional.FunctionalTests.test_django_xss_insecure +tests.functional.test_functional.FunctionalTests.test_django_xss_insecure ... ok +tests.functional.test_functional.FunctionalTests.test_exec +tests.functional.test_functional.FunctionalTests.test_exec ... ok +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data ... ok +tests.unit.core.test_context.ContextTests.test_call_args +tests.unit.core.test_context.ContextTests.test_call_args ... ok +tests.unit.core.test_context.ContextTests.test_call_function_name +tests.unit.core.test_context.ContextTests.test_call_function_name ... ok +tests.unit.core.test_issue.IssueTests.test_issue_str +tests.unit.core.test_issue.IssueTests.test_issue_str ... ok tests.unit.core.test_manager.ManagerTests.test_compare_baseline tests.unit.core.test_manager.ManagerTests.test_compare_baseline ... ok -tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable -tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot ... ok -[screen] INFO Screen formatter output was not written to file: /tmp/tmpxvIZZX, consider '-f txt' -[text] INFO Text output written to file: /tmp/tmpZ9qOVE +tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt +tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys ... ok tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues ... ok -tests.unit.formatters.test_text.TextFormatterTests.test_no_issues -tests.unit.formatters.test_text.TextFormatterTests.test_no_issues ... ok -tests.functional.test_functional.FunctionalTests.test_hardcoded_tmp -tests.functional.test_functional.FunctionalTests.test_hardcoded_tmp ... ok -tests.functional.test_functional.FunctionalTests.test_django_sql_injection -tests.functional.test_functional.FunctionalTests.test_django_sql_injection ... ok +[ INFO ] No output format specified, using terminal +[ INFO ] Got current commit: [eece02ad5dce701135bd54fe2b4329599862c504 master] tests.functional.test_functional.FunctionalTests.test_httplib_https tests.functional.test_functional.FunctionalTests.test_httplib_https ... ok -tests.functional.test_functional.FunctionalTests.test_httpoxy -tests.functional.test_functional.FunctionalTests.test_httpoxy ... ok -tests.functional.test_functional.FunctionalTests.test_os_popen -tests.functional.test_functional.FunctionalTests.test_os_popen ... ok -tests.functional.test_functional.FunctionalTests.test_requests_ssl_verify_disabled -tests.functional.test_functional.FunctionalTests.test_requests_ssl_verify_disabled ... ok -tests.functional.test_functional.FunctionalTests.test_unverified_context -tests.functional.test_functional.FunctionalTests.test_unverified_context ... ok -[ INFO ] No output format specified, using terminal -[ ERROR ] Bandit baseline must be called from a git project root -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo ... ok -[main] ERROR bandit.yaml : Could not read config file. -tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable -tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable ... ok -tests.unit.core.test_context.ContextTests.test_check_call_arg_value -tests.unit.core.test_context.ContextTests.test_check_call_arg_value ... ok -tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg -tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none ... ok -tests.unit.core.test_util.UtilTests.test_deepgetattr -tests.unit.core.test_util.UtilTests.test_deepgetattr ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical ... ok -[utils] WARNING Cannot resolve file path for module sys -tests.unit.core.test_util.UtilTests.test_path_for_function -tests.unit.core.test_util.UtilTests.test_path_for_function ... ok -tests.unit.core.test_util.UtilTests.test_path_for_function_no_file -tests.unit.core.test_util.UtilTests.test_path_for_function_no_file ... ok -tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key -tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger -tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_value -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_value ... ok -tests.unit.core.test_context.ContextTests.test_is_module_imported_exact -tests.unit.core.test_context.ContextTests.test_is_module_imported_exact ... ok -tests.unit.core.test_manager.ManagerTests.test_matches_globlist -tests.unit.core.test_manager.ManagerTests.test_matches_globlist ... ok -tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format -tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all ... ok -tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid -tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingmid -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingmid ... ok +[ INFO ] Got parent commit: [19b57ea52b94b8d11474b46a61b2f3d7c49b5498 master~1] +tests.functional.test_functional.FunctionalTests.test_okay +tests.functional.test_functional.FunctionalTests.test_okay ... ok +tests.functional.test_functional.FunctionalTests.test_os_chmod +tests.functional.test_functional.FunctionalTests.test_os_chmod ... ok +tests.functional.test_functional.FunctionalTests.test_cipher_modes +tests.functional.test_functional.FunctionalTests.test_cipher_modes ... ok +tests.functional.test_functional.FunctionalTests.test_imports_from +tests.functional.test_functional.FunctionalTests.test_imports_from ... ok +tests.functional.test_functional.FunctionalTests.test_eval +tests.functional.test_functional.FunctionalTests.test_eval ... ok tests.functional.test_functional.FunctionalTests.test_popen_wrappers tests.functional.test_functional.FunctionalTests.test_popen_wrappers ... ok -tests.functional.test_functional.FunctionalTests.test_skip -tests.functional.test_functional.FunctionalTests.test_skip ... ok -tests.functional.test_functional.FunctionalTests.test_yaml -tests.functional.test_functional.FunctionalTests.test_yaml ... ok -No handlers could be found for logger "bandit.cli.baseline" -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument ... ok +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger ... ok +Bandit baseline must not be called with the -o option +[ INFO ] Getting Bandit baseline results +[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmp2o1yhn2g'] +Output: None + usage: bandit-config-generator [-h] [--show-defaults] [-o OUTPUT_FILE] [-t TESTS] [-s SKIPS] @@ -2466,347 +2854,94 @@ list of test names to run -s SKIPS, --skip SKIPS list of test names to skip -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults ... ok -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue ... ok -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data ... ok -tests.unit.core.test_config.TestInit.test_file_does_not_exist -tests.unit.core.test_config.TestInit.test_file_does_not_exist ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend ... ok - ----------------------------------------------------------------------- -Ran 226 tests in 46.801s - -OK -+ python2-stestr slowest -Test id Runtime (s) ----------------------------------------------------------------------------- ----------- -tests.functional.test_functional.FunctionalTests.test_django_xss_insecure 9.067 -tests.functional.test_functional.FunctionalTests.test_ciphers 6.878 -tests.functional.test_functional.FunctionalTests.test_xml 5.368 -tests.functional.test_functional.FunctionalTests.test_django_sql_injection 5.241 -tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key 4.862 -tests.functional.test_functional.FunctionalTests.test_subprocess_shell 4.614 -tests.functional.test_functional.FunctionalTests.test_django_xss_secure 4.415 -tests.functional.test_functional.FunctionalTests.test_urlopen 2.838 -tests.functional.test_functional.FunctionalTests.test_sql_statements 2.324 -tests.functional.test_functional.FunctionalTests.test_hardcoded_tmp 2.194 -+ rm -rf .stestr -+ [ 3.7 = disabled ] -+ echo 3.7 -+ cut -d. -f1 -+ PYMAJOR=3 -+ echo ===> Testing with python (python3) -===> Testing with python (python3) -+ [ 3 = 3 ] -+ pwd -+ [ -d /build/bandit-1.5.1/debian/tmp/usr/lib/python3/dist-packages ] -+ [ -e .stestr.conf ] -+ rm -rf .stestr -+ subunit2pyunit -+ PYTHON=python3.7 python3-stestr run --subunit tests\.(?!(.*unit\.cli\.test_baseline\.BanditBaselineToolTests\.test_bandit_baseline.*|.*functional\.test_runtime.*|.*functional\.test_baseline.*)) -tests.functional.test_functional.FunctionalTests.test_asserts -tests.functional.test_functional.FunctionalTests.test_asserts ... ok -tests.functional.test_functional.FunctionalTests.test_binding -tests.functional.test_functional.FunctionalTests.test_binding ... ok -tests.functional.test_functional.FunctionalTests.test_imports_aliases -tests.functional.test_functional.FunctionalTests.test_imports_aliases ... ok -tests.functional.test_functional.FunctionalTests.test_imports_from -tests.functional.test_functional.FunctionalTests.test_imports_from ... ok -tests.functional.test_functional.FunctionalTests.test_imports_using_importlib -tests.functional.test_functional.FunctionalTests.test_imports_using_importlib ... ok -tests.functional.test_functional.FunctionalTests.test_blacklist_input -tests.functional.test_functional.FunctionalTests.test_blacklist_input ... ok -tests.functional.test_functional.FunctionalTests.test_os_system -tests.functional.test_functional.FunctionalTests.test_os_system ... ok tests.functional.test_functional.FunctionalTests.test_imports tests.functional.test_functional.FunctionalTests.test_imports ... ok -tests.functional.test_functional.FunctionalTests.test_blacklist_pycrypto -tests.functional.test_functional.FunctionalTests.test_blacklist_pycrypto ... ok -tests.functional.test_functional.FunctionalTests.test_cipher_modes -tests.functional.test_functional.FunctionalTests.test_cipher_modes ... ok -tests.functional.test_functional.FunctionalTests.test_eval -tests.functional.test_functional.FunctionalTests.test_eval ... ok -tests.functional.test_functional.FunctionalTests.test_mark_safe -tests.functional.test_functional.FunctionalTests.test_mark_safe ... ok -tests.functional.test_functional.FunctionalTests.test_hardcoded_passwords -tests.functional.test_functional.FunctionalTests.test_hardcoded_passwords ... ok -tests.functional.test_functional.FunctionalTests.test_dill -tests.functional.test_functional.FunctionalTests.test_dill ... ok -tests.functional.test_functional.FunctionalTests.test_hashlib_new_insecure_functions -tests.functional.test_functional.FunctionalTests.test_hashlib_new_insecure_functions ... ok -tests.functional.test_functional.FunctionalTests.test_crypto_md5 -tests.functional.test_functional.FunctionalTests.test_crypto_md5 ... ok +tests.functional.test_functional.FunctionalTests.test_os_exec +tests.functional.test_functional.FunctionalTests.test_os_exec ... ok +[ INFO ] Comparing Bandit results to baseline +[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmp2o1yhn2g'] +Output: None + tests.functional.test_functional.FunctionalTests.test_os_popen tests.functional.test_functional.FunctionalTests.test_os_popen ... ok -tests.functional.test_functional.FunctionalTests.test_flask_debug_true -tests.functional.test_functional.FunctionalTests.test_flask_debug_true ... ok -tests.functional.test_functional.FunctionalTests.test_random_module -tests.functional.test_functional.FunctionalTests.test_random_module ... ok -tests.functional.test_functional.FunctionalTests.test_metric_gathering -tests.functional.test_functional.FunctionalTests.test_metric_gathering ... ok -Git command not found -tests.functional.test_functional.FunctionalTests.test_partial_path -tests.functional.test_functional.FunctionalTests.test_partial_path ... ok -tests.functional.test_functional.FunctionalTests.test_os_spawn -tests.functional.test_functional.FunctionalTests.test_os_spawn ... ok -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure ... ok -tests.functional.test_functional.FunctionalTests.test_requests_ssl_verify_disabled -tests.functional.test_functional.FunctionalTests.test_requests_ssl_verify_disabled ... ok -tests.functional.test_functional.FunctionalTests.test_os_startfile -tests.functional.test_functional.FunctionalTests.test_os_startfile ... ok -tests.functional.test_functional.FunctionalTests.test_tempnam -tests.functional.test_functional.FunctionalTests.test_tempnam ... ok -tests.functional.test_functional.FunctionalTests.test_jinja2_templating -tests.functional.test_functional.FunctionalTests.test_jinja2_templating ... ok -Config file '/tmp/tmpms5yb3e9' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[ INFO ] No output format specified, using terminal +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument ... ok +tests.functional.test_functional.FunctionalTests.test_ciphers +tests.functional.test_functional.FunctionalTests.test_ciphers ... ok +Config file '/tmp/tmp8law5jiz' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. Legacy blacklist data found in config, overriding data plugins -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test ... ok -tests.unit.core.test_context.ContextTests.test_function_def_defaults_qual -tests.unit.core.test_context.ContextTests.test_function_def_defaults_qual ... ok -tests.unit.core.test_context.ContextTests.test_repr -tests.unit.core.test_context.ContextTests.test_repr ... ok -tests.functional.test_functional.FunctionalTests.test_mako_templating -tests.functional.test_functional.FunctionalTests.test_mako_templating ... ok -tests.functional.test_functional.FunctionalTests.test_try_except_pass -tests.functional.test_functional.FunctionalTests.test_try_except_pass ... ok +tests.functional.test_functional.FunctionalTests.test_pickle +tests.functional.test_functional.FunctionalTests.test_pickle ... ok +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_init_extensions tests.unit.cli.test_main.BanditCLIMainTests.test_init_extensions ... ok -tests.unit.core.test_manager.ManagerTests.test_compare_baseline -tests.unit.core.test_manager.ManagerTests.test_compare_baseline ... ok -tests.functional.test_functional.FunctionalTests.test_multiline_code -tests.functional.test_functional.FunctionalTests.test_multiline_code ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger -tests.unit.cli.test_config_generator.BanditConfigGeneratorLoggerTests.test_init_logger ... ok -tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger -tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger ... ok -tests.functional.test_functional.FunctionalTests.test_ssl_insecure_version -tests.functional.test_functional.FunctionalTests.test_ssl_insecure_version ... ok -tests.unit.core.test_config.TestGetOption.test_levels_not_exist -tests.unit.core.test_config.TestGetOption.test_levels_not_exist ... ok -tests.functional.test_functional.FunctionalTests.test_hardcoded_tmp -tests.functional.test_functional.FunctionalTests.test_hardcoded_tmp ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline ... ok -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none ... ok -tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg -tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg ... ok -tests.unit.core.test_context.ContextTests.test_is_module_being_imported -tests.unit.core.test_context.ContextTests.test_is_module_being_imported ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults -tests.unit.core.test_test_set.BanditTestSetTests.test_has_defaults ... ok -tests.functional.test_functional.FunctionalTests.test_mktemp -tests.functional.test_functional.FunctionalTests.test_mktemp ... ok -tests.unit.core.test_util.UtilTests.test_deepgetattr -tests.unit.core.test_util.UtilTests.test_deepgetattr ... ok -Unable to parse config file /tmp/tmpepm4x4cs or missing [bandit] section -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: None -[main] INFO cli exclude tests: None -[main] INFO using config: bandit.yaml -[main] INFO running on Python 3.7.3 -[text] INFO Text output written to file: output -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_sys ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_main_show_defaults ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results -tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_no_results ... ok -tests.unit.core.test_util.UtilTests.test_check_ast_node_good -tests.unit.core.test_util.UtilTests.test_check_ast_node_good ... ok -tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid -tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid ... ok -Cannot resolve file path for module sys -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: None -[main] INFO cli exclude tests: None -tests.unit.core.test_util.UtilTests.test_parse_ini_file -tests.unit.core.test_util.UtilTests.test_parse_ini_file ... ok -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -tests.unit.formatters.test_text.TextFormatterTests.test_no_issues -tests.unit.formatters.test_text.TextFormatterTests.test_no_issues ... ok -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: None -[main] INFO cli exclude tests: None -tests.unit.core.test_util.UtilTests.test_get_call_name1 -tests.unit.core.test_util.UtilTests.test_get_call_name1 ... ok -tests.unit.core.test_util.UtilTests.test_path_for_function_no_file -tests.unit.core.test_util.UtilTests.test_path_for_function_no_file ... ok -[main] WARNING Baseline must be used with one of the following formats: ['custom', 'html', 'json', 'screen', 'txt'] -[main] INFO using config: bandit.yaml -[main] INFO running on Python 3.7.3 -[text] INFO Text output written to file: output -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format ... ok -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue ... ok -tests.unit.core.test_config.TestGetSetting.test_not_exist -tests.unit.core.test_config.TestGetSetting.test_not_exist ... ok -tests.unit.core.test_issue.IssueTests.test_issue_create -tests.unit.core.test_issue.IssueTests.test_issue_create ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results -tests.unit.cli.test_main.BanditCLIMainTests.test_main_exit_with_results ... ok +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data ... ok +Skipping directory (thing), use -r flag to scan contents +while parsing a flow sequence + in "/tmp/tmpg4gzvkac", line 1, column 3 +expected ',' or ']', but got '' + in "/tmp/tmpg4gzvkac", line 1, column 14 +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults +tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults ... ok tests.unit.core.test_config.TestInit.test_file_does_not_exist tests.unit.core.test_config.TestInit.test_file_does_not_exist ... ok -tests.unit.core.test_context.ContextTests.test__get_literal_value -tests.unit.core.test_context.ContextTests.test__get_literal_value ... ok -tests.unit.core.test_manager.ManagerTests.test_create_manager -tests.unit.core.test_manager.ManagerTests.test_create_manager ... ok -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success ... ok -tests.functional.test_functional.FunctionalTests.test_imports_function -tests.functional.test_functional.FunctionalTests.test_imports_function ... ok -tests.functional.test_functional.FunctionalTests.test_skip -tests.functional.test_functional.FunctionalTests.test_skip ... ok -Bandit baseline must not be called with the -o option -[csv] INFO CSV output written to file: /tmp/tmpi3o0bqx2 -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[main] INFO profile include tests: None -[main] INFO profile exclude tests: None -[main] INFO cli include tests: None -[main] INFO cli exclude tests: badID -[main] ERROR Unknown test found in profile: badID -[main] ERROR bandit.yaml : Could not read config file. -tests.functional.test_functional.FunctionalTests.test_try_except_continue -tests.functional.test_functional.FunctionalTests.test_try_except_continue ... ok -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument ... ok +tests.unit.core.test_config.TestInit.test_settings +tests.unit.core.test_config.TestInit.test_settings ... ok +tests.functional.test_functional.FunctionalTests.test_os_system +tests.functional.test_functional.FunctionalTests.test_os_system ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_bandit_files tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_bandit_files ... ok -tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key -tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key ... ok -tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile -tests.unit.core.test_manager.ManagerTests.test_create_manager_with_profile ... ok -[main] ERROR : -tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt -tests.unit.core.test_manager.ManagerTests.test_run_tests_keyboardinterrupt ... ok -tests.unit.core.test_util.UtilTests.test_namespace_path_split -tests.unit.core.test_util.UtilTests.test_namespace_path_split ... ok -tests.unit.formatters.test_csv.CsvFormatterTests.test_report -tests.unit.formatters.test_csv.CsvFormatterTests.test_report ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_invalid_path ... ok -tests.functional.test_functional.FunctionalTests.test_django_xss_insecure -tests.functional.test_functional.FunctionalTests.test_django_xss_insecure ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable -tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable ... ok -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents ... ok [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [main] INFO profile include tests: None [main] INFO profile exclude tests: None [main] INFO cli include tests: badID [main] INFO cli exclude tests: None [main] ERROR Unknown test found in profile: badID -tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue -tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue ... ok -tests.functional.test_functional.FunctionalTests.test_ftp_usage -tests.functional.test_functional.FunctionalTests.test_ftp_usage ... ok -tests.functional.test_functional.FunctionalTests.test_baseline_filter -tests.functional.test_functional.FunctionalTests.test_baseline_filter ... ok -tests.functional.test_functional.FunctionalTests.test_blacklist_pycryptodome -tests.functional.test_functional.FunctionalTests.test_blacklist_pycryptodome ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config -tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_skip_tests ... ok - -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests -tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests ... ok -tests.functional.test_functional.FunctionalTests.test_os_chmod -tests.functional.test_functional.FunctionalTests.test_os_chmod ... ok -tests.functional.test_functional.FunctionalTests.test_subprocess_shell -tests.functional.test_functional.FunctionalTests.test_subprocess_shell ... ok -[config] WARNING Config file '/tmp/tmpg3vuylo4' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist ... ok -tests.functional.test_functional.FunctionalTests.test_ignore_skip -tests.functional.test_functional.FunctionalTests.test_ignore_skip ... ok -[config] WARNING Config file '/tmp/tmp1a_bg2cy' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Cannot resolve file where 1 is defined +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip +tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include ... ok tests.unit.core.test_util.UtilTests.test_get_call_name2 tests.unit.core.test_util.UtilTests.test_get_call_name2 ... ok -[config] WARNING Legacy blacklist data found in config, overriding data plugins -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_init_logger ... ok -tests.functional.test_functional.FunctionalTests.test_nosec -tests.functional.test_functional.FunctionalTests.test_nosec ... ok -tests.functional.test_functional.FunctionalTests.test_pickle -tests.functional.test_functional.FunctionalTests.test_pickle ... ok -tests.unit.core.test_config.TestConfigCompat.test_bad_yaml -tests.unit.core.test_config.TestConfigCompat.test_bad_yaml ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingend +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingend ... ok tests.functional.test_functional.FunctionalTests.test_subdirectory_okay tests.functional.test_functional.FunctionalTests.test_subdirectory_okay ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_typical ... ok -tests.unit.formatters.test_text.TextFormatterTests.test_output_issue -tests.unit.formatters.test_text.TextFormatterTests.test_output_issue ... ok -tests.functional.test_functional.FunctionalTests.test_django_sql_injection -tests.functional.test_functional.FunctionalTests.test_django_sql_injection ... ok -[config] WARNING Config file '/tmp/tmp96dk_yi4' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +tests.unit.core.test_config.TestInit.test_yaml_invalid +tests.unit.core.test_config.TestInit.test_yaml_invalid ... ok +tests.unit.core.test_context.ContextTests.test_call_keywords +tests.unit.core.test_context.ContextTests.test_call_keywords ... ok +tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format +tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format ... ok +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str +tests.unit.core.test_meta_ast.BanditMetaAstTests.test_str ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests +tests.unit.cli.test_main.BanditCLIMainTests.test_main_unknown_tests ... ok +[config] WARNING Config file '/tmp/tmprhf3_r7d' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [config] WARNING Legacy blacklist data found in config, overriding data plugins -tests.unit.core.test_config.TestConfigCompat.test_deprecation_message -tests.unit.core.test_config.TestConfigCompat.test_deprecation_message ... ok -tests.functional.test_functional.FunctionalTests.test_exec -tests.functional.test_functional.FunctionalTests.test_exec ... ok -tests.unit.core.test_config.TestGetOption.test_levels -tests.unit.core.test_config.TestGetOption.test_levels ... ok -tests.unit.core.test_context.ContextTests.test_context_create -tests.unit.core.test_context.ContextTests.test_context_create ... ok -tests.unit.core.test_issue.IssueTests.test_issue_as_dict -tests.unit.core.test_issue.IssueTests.test_issue_as_dict ... ok -tests.functional.test_functional.FunctionalTests.test_os_exec -tests.functional.test_functional.FunctionalTests.test_os_exec ... ok -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_type ... ok -tests.functional.test_functional.FunctionalTests.test_host_key_verification -tests.functional.test_functional.FunctionalTests.test_host_key_verification ... ok -tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable -tests.unit.core.test_util.UtilTests.test_escaped_representation_valid_not_printable ... ok -tests.functional.test_functional.FunctionalTests.test_httplib_https -tests.functional.test_functional.FunctionalTests.test_httplib_https ... ok +[config] WARNING Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_syms tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_syms ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot ... ok -[screen] INFO Screen formatter output was not written to file: /tmp/tmpzoadjq7d, consider '-f txt' -tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues -tests.unit.formatters.test_screen.ScreenFormatterTests.test_no_issues ... ok -tests.functional.test_functional.FunctionalTests.test_paramiko_injection -tests.functional.test_functional.FunctionalTests.test_paramiko_injection ... ok -tests.functional.test_functional.FunctionalTests.test_code_line_numbers -tests.functional.test_functional.FunctionalTests.test_code_line_numbers ... ok -[ INFO ] No output format specified, using terminal +tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping +tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping ... ok +[main] ERROR bandit.yaml : Could not read config file. +[config] WARNING Config file '/tmp/tmpibwa8r7c' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_blacklist_error +tests.unit.core.test_config.TestConfigCompat.test_blacklist_error ... ok +[ INFO ] Got current commit: [19b57ea52b94b8d11474b46a61b2f3d7c49b5498 master] +[ ERROR ] Parent commit not available +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable +tests.unit.cli.test_main.BanditCLIMainTests.test_main_config_unopenable ... ok tests.functional.test_functional.FunctionalTests.test_telnet_usage tests.functional.test_functional.FunctionalTests.test_telnet_usage ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values ... ok -tests.unit.core.test_context.ContextTests.test_call_args_count -tests.unit.core.test_context.ContextTests.test_call_args_count ... ok -tests.functional.test_functional.FunctionalTests.test_django_xss_secure -tests.functional.test_functional.FunctionalTests.test_django_xss_secure ... ok -tests.functional.test_functional.FunctionalTests.test_xml -tests.functional.test_functional.FunctionalTests.test_xml ... ok -Skipping directory (thing), use -r flag to scan contents -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip -tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_skip ... ok -tests.functional.test_functional.FunctionalTests.test_urlopen -tests.functional.test_functional.FunctionalTests.test_urlopen ... ok [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [main] INFO Using ini file for excluded paths [main] INFO Using ini file for skipped tests @@ -2816,37 +2951,94 @@ [main] INFO profile exclude tests: None [main] INFO cli include tests: some_test [main] INFO cli exclude tests: skip_test -tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format -tests.unit.core.test_manager.ManagerTests.test_output_results_invalid_format ... ok -tests.unit.core.test_manager.ManagerTests.test_results_count -tests.unit.core.test_manager.ManagerTests.test_results_count ... ok -[ INFO ] No output format specified, using terminal +[utils] WARNING Unable to parse config file /tmp/tmp3s5yf_yc or missing [bandit] section +tests.unit.core.test_config.TestConfigCompat.test_deprecation_message +tests.unit.core.test_config.TestConfigCompat.test_deprecation_message ... ok +tests.unit.core.test_context.ContextTests.test__get_literal_value +tests.unit.core.test_context.ContextTests.test__get_literal_value ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude_cmdline ... ok +tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror +tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror ... ok +tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid +tests.unit.core.test_util.UtilTests.test_escaped_representation_invalid ... ok +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_contents ... ok +None tests.unit.cli.test_main.BanditCLIMainTests.test_main_handle_ini_options tests.unit.cli.test_main.BanditCLIMainTests.test_main_handle_ini_options ... ok -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults -tests.unit.core.test_blacklisting.BlacklistingTests.test_report_issue_defaults ... ok -tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping -tests.unit.formatters.test_html.HtmlFormatterTests.test_escaping ... ok +tests.unit.core.test_util.UtilTests.test_get_call_name3 +tests.unit.core.test_util.UtilTests.test_get_call_name3 ... ok +tests.unit.core.test_util.UtilTests.test_namespace_path_split +tests.unit.core.test_util.UtilTests.test_namespace_path_split ... ok [ INFO ] No output format specified, using terminal -[ ERROR ] Bandit baseline must be called from a git project root -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_non_repo ... ok -tests.functional.test_functional.FunctionalTests.test_django_sql_injection_raw -tests.functional.test_functional.FunctionalTests.test_django_sql_injection_raw ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_no_defaults ... ok +[ ERROR ] Temporary file _bandit_baseline_run.json_ needs to be removed prior to running +tests.unit.core.test_util.UtilTests.test_parse_ini_file +tests.unit.core.test_util.UtilTests.test_parse_ini_file ... ok +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file ... ok +[config] WARNING Config file '/tmp/tmpw1lmgdom' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +tests.functional.test_functional.FunctionalTests.test_subprocess_shell +tests.functional.test_functional.FunctionalTests.test_subprocess_shell ... ok +tests.functional.test_functional.FunctionalTests.test_try_except_continue +tests.functional.test_functional.FunctionalTests.test_try_except_continue ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_target +tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_target ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid ... ok +tests.unit.core.test_util.UtilTests.test_path_for_function_no_module +tests.unit.core.test_util.UtilTests.test_path_for_function_no_module ... ok +tests.unit.core.test_context.ContextTests.test_call_function_name_qual +tests.unit.core.test_context.ContextTests.test_call_function_name_qual ... ok +tests.unit.core.test_context.ContextTests.test_check_call_arg_value +tests.unit.core.test_context.ContextTests.test_check_call_arg_value ... ok +tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg +tests.unit.core.test_context.ContextTests.test_get_lineno_for_call_arg ... ok +tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches +tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches ... ok +tests.unit.core.test_config.TestConfigCompat.test_converted_include +tests.unit.core.test_config.TestConfigCompat.test_converted_include ... ok +tests.unit.core.test_context.ContextTests.test_get_call_arg_at_position +tests.unit.core.test_context.ContextTests.test_get_call_arg_at_position ... ok +tests.unit.core.test_context.ContextTests.test_string_val +tests.unit.core.test_context.ContextTests.test_string_val ... ok +[screen] INFO Screen formatter output was not written to file: /tmp/tmpglc91une, consider '-f txt' +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id ... ok +tests.unit.core.test_manager.ManagerTests.test_results_count +tests.unit.core.test_manager.ManagerTests.test_results_count ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_has_builtin_blacklist ... ok +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped +tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped ... ok +[xml] INFO XML output written to file: /tmp/tmpj5_p396i +[json] INFO JSON output written to file: /tmp/tmp0jf3d__j +tests.unit.core.test_config.TestGetSetting.test_not_exist +tests.unit.core.test_config.TestGetSetting.test_not_exist ... ok +tests.unit.core.test_issue.IssueTests.test_matches_issue +tests.unit.core.test_issue.IssueTests.test_matches_issue ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id ... ok +tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key +tests.functional.test_functional.FunctionalTests.test_weak_cryptographic_key ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none ... ok +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node +tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node ... ok tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_baseline tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_baseline ... ok -tests.functional.test_functional.FunctionalTests.test_httpoxy -tests.functional.test_functional.FunctionalTests.test_httpoxy ... ok -[ INFO ] Got current commit: [3f35c917b1ad8a89ebd704c2f0b9a62e3cd54add master] -tests.functional.test_functional.FunctionalTests.test_nonsense -tests.functional.test_functional.FunctionalTests.test_nonsense ... ok -[config] WARNING Config file '/tmp/tmpbd79njsk' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins -tests.functional.test_functional.FunctionalTests.test_wildcard_injection -tests.functional.test_functional.FunctionalTests.test_wildcard_injection ... ok -Run started:2021-11-29 06:31:57.266502 +tests.unit.formatters.test_xml.XmlFormatterTests.test_report +tests.unit.formatters.test_xml.XmlFormatterTests.test_report ... ok +[ INFO ] No output format specified, using terminal +tests.unit.formatters.test_yaml.YamlFormatterTests.test_report +tests.unit.formatters.test_yaml.YamlFormatterTests.test_report ... ok +tests.functional.test_functional.FunctionalTests.test_crypto_md5 +tests.functional.test_functional.FunctionalTests.test_crypto_md5 ... ok +[ ERROR ] Unable to get current or parent commit +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure ... ok +Run started:2023-01-01 12:58:35.797268  Test results: ISSUE_OUTPUT_TEXT @@ -2878,223 +3070,120 @@ Medium: 0 High: 0 Files skipped (0): -tests.unit.core.test_config.TestConfigCompat.test_converted_include -tests.unit.core.test_config.TestConfigCompat.test_converted_include ... ok -tests.unit.core.test_context.ContextTests.test_call_args -tests.unit.core.test_context.ContextTests.test_call_args ... ok -tests.unit.core.test_context.ContextTests.test_get_call_arg_at_position -tests.unit.core.test_context.ContextTests.test_get_call_arg_at_position ... ok -tests.unit.core.test_issue.IssueTests.test_get_code -tests.unit.core.test_issue.IssueTests.test_get_code ... ok -[ ERROR ] Parent commit not available -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit ... ok -Config file '/tmp/tmpy68j9jc5' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins -tests.functional.test_functional.FunctionalTests.test_okay -tests.functional.test_functional.FunctionalTests.test_okay ... ok -Bandit baseline must be called from a git project root -tests.unit.core.test_issue.IssueTests.test_issue_str -tests.unit.core.test_issue.IssueTests.test_issue_str ... ok -tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir -tests.unit.core.test_manager.ManagerTests.test_get_files_from_dir ... ok -[ ERROR ] Unable to get current or parent commit -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure ... ok -Unable to parse config file /tmp/tmphrige0g7 or missing [bandit] section -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_show_defaults ... ok -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_no_repo ... ok -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test ... ok -Config file '/tmp/tmpp0gf32dq' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins -[utils] WARNING Cannot resolve file where 1 is defined -[json] INFO JSON output written to file: /tmp/tmps1ivm6wm -[text] INFO Text output written to file: /tmp/tmpnpy_fqbg +[main] ERROR : +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_config ... ok +tests.unit.core.test_context.ContextTests.test_call_args_count +tests.unit.core.test_context.ContextTests.test_call_args_count ... ok tests.unit.core.test_context.ContextTests.test_is_module_imported_exact tests.unit.core.test_context.ContextTests.test_is_module_imported_exact ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_empty_directory_no_target ... ok tests.unit.core.test_context.ContextTests.test_statement tests.unit.core.test_context.ContextTests.test_statement ... ok -tests.unit.core.test_context.ContextTests.test_string_val -tests.unit.core.test_context.ContextTests.test_string_val ... ok -tests.unit.core.test_issue.IssueTests.test_matches_issue -tests.unit.core.test_issue.IssueTests.test_matches_issue ... ok -[text] INFO Text output written to file: /tmp/tmpnpy_fqbg -[json] INFO JSON output written to file: /tmp/tmpg8cj7d4d -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_data ... ok +tests.unit.core.test_issue.IssueTests.test_issue_filter_severity +tests.unit.core.test_issue.IssueTests.test_issue_filter_severity ... ok +tests.unit.core.test_manager.ManagerTests.test_create_manager +tests.unit.core.test_manager.ManagerTests.test_create_manager ... ok tests.unit.core.test_manager.ManagerTests.test_is_file_included tests.unit.core.test_manager.ManagerTests.test_is_file_included ... ok -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node -tests.unit.core.test_meta_ast.BanditMetaAstTests.test_add_node ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingmid -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingmid ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingend ... ok -tests.unit.core.test_manager.ManagerTests.test_matches_globlist -tests.unit.core.test_manager.ManagerTests.test_matches_globlist ... ok -tests.unit.core.test_config.TestInit.test_settings -tests.unit.core.test_config.TestInit.test_settings ... ok -tests.unit.core.test_context.ContextTests.test_check_call_arg_value -tests.unit.core.test_context.ContextTests.test_check_call_arg_value ... ok -tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror -tests.unit.core.test_manager.ManagerTests.test_run_tests_ioerror ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist_specific ... ok +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success +tests.unit.core.test_manager.ManagerTests.test_populate_baseline_success ... ok tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_none ... ok -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node -tests.unit.core.test_util.UtilTests.test_check_ast_node_bad_node ... ok -tests.unit.core.test_util.UtilTests.test_get_call_name3 -tests.unit.core.test_util.UtilTests.test_get_call_name3 ... ok -tests.functional.test_functional.FunctionalTests.test_popen_wrappers -tests.functional.test_functional.FunctionalTests.test_popen_wrappers ... ok -tests.unit.core.test_issue.IssueTests.test_issue_filter_severity -tests.unit.core.test_issue.IssueTests.test_issue_filter_severity ... ok -tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches -tests.unit.core.test_manager.ManagerTests.test_find_candidate_matches ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_builtin_blacklist ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_none ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_include_id ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_missingmid ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_one ... ok -tests.unit.core.test_util.UtilTests.test_path_for_function_no_module -tests.unit.core.test_util.UtilTests.test_path_for_function_no_module ... ok -tests.unit.formatters.test_json.JsonFormatterTests.test_report -tests.unit.formatters.test_json.JsonFormatterTests.test_report ... ok -tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline -tests.unit.formatters.test_text.TextFormatterTests.test_report_nobaseline ... ok -tests.functional.test_functional.FunctionalTests.test_ciphers -tests.functional.test_functional.FunctionalTests.test_ciphers ... ok -tests.functional.test_functional.FunctionalTests.test_unverified_context -tests.functional.test_functional.FunctionalTests.test_unverified_context ... ok -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped -tests.unit.formatters.test_html.HtmlFormatterTests.test_report_with_skipped ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical ... ok +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot +tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_with_dot ... ok +tests.functional.test_functional.FunctionalTests.test_httpoxy +tests.functional.test_functional.FunctionalTests.test_httpoxy ... ok +tests.functional.test_functional.FunctionalTests.test_ignore_skip +tests.functional.test_functional.FunctionalTests.test_ignore_skip ... ok +tests.functional.test_functional.FunctionalTests.test_nonsense +tests.functional.test_functional.FunctionalTests.test_nonsense ... ok +tests.functional.test_functional.FunctionalTests.test_os_startfile +tests.functional.test_functional.FunctionalTests.test_os_startfile ... ok +tests.functional.test_functional.FunctionalTests.test_django_xss_secure +tests.functional.test_functional.FunctionalTests.test_django_xss_secure ... ok +Git command not found tests.functional.test_functional.FunctionalTests.test_yaml tests.functional.test_functional.FunctionalTests.test_yaml ... ok -tests.unit.formatters.test_yaml.YamlFormatterTests.test_report -tests.unit.formatters.test_yaml.YamlFormatterTests.test_report ... ok -tests.functional.test_functional.FunctionalTests.test_sql_statements -tests.functional.test_functional.FunctionalTests.test_sql_statements ... ok -usage: bandit-config-generator [-h] [--show-defaults] [-o OUTPUT_FILE] - [-t TESTS] [-s SKIPS] - -Bandit Config Generator - - This tool is used to generate an optional profile. The profile may be used - to include or skip tests and override values for plugins. - - When used to store an output profile, this tool will output a template that - includes all plugins and their default settings. Any settings which aren't - being overridden can be safely removed from the profile and default values - will be used. Bandit will prefer settings from the profile over the built - in values. - -optional arguments: - -h, --help show this help message and exit - --show-defaults show the default settings values for each plugin but do not output a profile - -o OUTPUT_FILE, --out OUTPUT_FILE - output file to save profile - -t TESTS, --tests TESTS - list of test names to run - -s SKIPS, --skip SKIPS - list of test names to skip -[main] DEBUG logging initialized -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_get_config_settings ... ok -tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode -tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger_debug_mode ... ok -Multiple .bandit files found - scan separately or choose one with --ini - /tmp/tmpzn9snzay/.bandit, /tmp/tmpzn9snzay/second_config_directory/.bandit -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_multi_bandit_files ... ok -[config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found -tests.unit.cli.test_main.BanditCLIMainTests.test_main_profile_not_found ... ok -Temporary file _bandit_baseline_run.json_ needs to be removed prior to running -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file ... ok -[config] WARNING Config file '/tmp/tmp7zu4s4nu' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins -[config] WARNING Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Config file '' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -tests.unit.core.test_config.TestConfigCompat.test_blacklist_error -tests.unit.core.test_config.TestConfigCompat.test_blacklist_error ... ok -File bandit_baseline_result.txt already exists, aborting -[config] WARNING Config file '/tmp/tmpqxpi2mm3' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -[config] WARNING Legacy blacklist data found in config, overriding data plugins -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude -tests.unit.core.test_config.TestConfigCompat.test_converted_exclude ... ok -tests.unit.core.test_context.ContextTests.test_node -tests.unit.core.test_context.ContextTests.test_node ... ok -tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence -tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence ... ok -while parsing a flow sequence - in "/tmp/tmpajt_dhgu", line 1, column 3 -expected ',' or ']', but got '' - in "/tmp/tmpajt_dhgu", line 1, column 14 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_target -tests.unit.cli.test_main.BanditCLIMainTests.test_get_options_from_ini_no_ini_path_no_target ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val -tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_arg_val ... ok +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file +tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file ... ok +tests.functional.test_functional.FunctionalTests.test_imports_function +tests.functional.test_functional.FunctionalTests.test_imports_function ... ok +tests.functional.test_functional.FunctionalTests.test_paramiko_injection +tests.functional.test_functional.FunctionalTests.test_paramiko_injection ... ok +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure ... ok +tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger +tests.unit.cli.test_main.BanditCLIMainLoggerTests.test_init_logger ... ok +tests.unit.core.test_context.ContextTests.test_is_module_imported_like +tests.unit.core.test_context.ContextTests.test_is_module_imported_like ... ok +tests.unit.core.test_context.ContextTests.test_repr +tests.unit.core.test_context.ContextTests.test_repr ... ok +tests.unit.core.test_issue.IssueTests.test_issue_as_dict +tests.unit.core.test_issue.IssueTests.test_issue_as_dict ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat ... ok tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_value tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_ini_value ... ok -tests.unit.core.test_config.TestInit.test_yaml_invalid -tests.unit.core.test_config.TestInit.test_yaml_invalid ... ok -tests.unit.core.test_context.ContextTests.test_call_function_name -tests.unit.core.test_context.ContextTests.test_call_function_name ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_include -tests.unit.core.test_manager.ManagerTests.test_discover_files_include ... ok -tests.unit.core.test_context.ContextTests.test_call_function_name_qual -tests.unit.core.test_context.ContextTests.test_call_function_name_qual ... ok -tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format -tests.unit.core.test_manager.ManagerTests.test_output_results_valid_format ... ok tests.unit.core.test_util.UtilTests.test_escaped_representation_simple tests.unit.core.test_util.UtilTests.test_escaped_representation_simple ... ok +Config file '/tmp/tmp3gi11j82' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_util.UtilTests.test_get_call_name1 +tests.unit.core.test_util.UtilTests.test_get_call_name1 ... ok +Config file '/tmp/tmphwz3rdek' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +Legacy blacklist data found in config, overriding data plugins +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_test ... ok +tests.unit.core.test_util.UtilTests.test_namespace_path_join +tests.unit.core.test_util.UtilTests.test_namespace_path_join ... ok +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist +tests.unit.core.test_config.TestConfigCompat.test_converted_exclude_blacklist ... ok +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude +tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude ... ok +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none +tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_none ... ok tests.unit.core.test_util.UtilTests.test_path_for_function tests.unit.core.test_util.UtilTests.test_path_for_function ... ok +tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue +tests.unit.formatters.test_screen.ScreenFormatterTests.test_output_issue ... ok +tests.functional.test_functional.FunctionalTests.test_requests_ssl_verify_disabled +tests.functional.test_functional.FunctionalTests.test_requests_ssl_verify_disabled ... ok Current working directory is dirty and must be resolved -tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed -tests.unit.core.test_util.UtilTests.test_escaped_representation_mixed ... ok tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_dirty_repo ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_typical ... ok -tests.unit.core.test_util.UtilTests.test_linerange -tests.unit.core.test_util.UtilTests.test_linerange ... ok -tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline -tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline ... ok +File bandit_baseline_result.txt already exists, aborting +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_report_file ... ok +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values +tests.unit.cli.test_main.BanditCLIMainTests.test_log_option_source_no_values ... ok [config] WARNING Config file 'bandit.yaml' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. [main] INFO profile include tests: None [main] INFO profile exclude tests: None [main] INFO cli include tests: None [main] INFO cli exclude tests: None -[main] WARNING Could not open baseline report: base.json -tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline -tests.unit.formatters.test_text.TextFormatterTests.test_report_baseline ... ok -tests.unit.cli.test_main.BanditCLIMainTests.test_main_baseline_ioerror -tests.unit.cli.test_main.BanditCLIMainTests.test_main_baseline_ioerror ... ok -tests.unit.core.test_context.ContextTests.test_is_module_imported_like -tests.unit.core.test_context.ContextTests.test_is_module_imported_like ... ok -[ INFO ] No output format specified, using terminal +[main] WARNING Baseline must be used with one of the following formats: ['custom', 'html', 'json', 'screen', 'txt'] +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format +tests.unit.cli.test_main.BanditCLIMainTests.test_main_invalid_output_format ... ok +[config] WARNING Config file '/tmp/tmpwd9doyp4' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. +[config] WARNING Legacy blacklist data found in config, overriding data plugins +[csv] INFO CSV output written to file: /tmp/tmp6a77nkso +[screen] INFO Screen formatter output was not written to file: /tmp/tmpx1gzstr1, consider '-f txt' +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test +tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_call_test ... ok +tests.unit.core.test_config.TestGetOption.test_levels_not_exist +tests.unit.core.test_config.TestGetOption.test_levels_not_exist ... ok +tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence +tests.unit.core.test_issue.IssueTests.test_issue_filter_confidence ... ok tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files tests.unit.core.test_manager.ManagerTests.test_discover_files_recurse_files ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_exclude_id ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_all ... ok -Run started:2021-11-29 06:31:57.834744 +[screen] INFO Screen formatter output was not written to file: /tmp/tmpx1gzstr1, consider '-f txt' +tests.unit.formatters.test_csv.CsvFormatterTests.test_report +tests.unit.formatters.test_csv.CsvFormatterTests.test_report ... ok +tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline +tests.unit.formatters.test_screen.ScreenFormatterTests.test_report_nobaseline ... ok +Run started:2023-01-01 12:58:36.477164 Files in scope (1): binding.py (score: {SEVERITY: 1, CONFIDENCE: 1}) Files excluded (1): @@ -3123,63 +3212,24 @@ High: 1 Files skipped (1): abc.py (File is bad) -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_filter_blacklist_include ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingend -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_abs_missingend ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_dir ... ok -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms -tests.unit.core.test_util.UtilTests.test_get_module_qualname_from_path_rel_syms ... ok -tests.unit.core.test_util.UtilTests.test_namespace_path_join -tests.unit.core.test_util.UtilTests.test_namespace_path_join ... ok -[ INFO ] Got current commit: [75748052616f3aec2db5b061fba46821c2320079 master] -[ INFO ] Got parent commit: [3f35c917b1ad8a89ebd704c2f0b9a62e3cd54add master~1] -[ INFO ] Getting Bandit baseline results -[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmpb34al4o_'] -Output: None - -[ INFO ] Comparing Bandit results to baseline -[ ERROR ] Error running command: ['discover', '-t', './', './tests', '--load-list', '/tmp/tmpb34al4o_'] -Output: None - -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error ... ok -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file -tests.unit.cli.test_config_generator.BanditConfigGeneratorTests.test_parse_args_out_file ... ok -Config file '/tmp/tmp_7i8289o' contains deprecated legacy config data. Please consider upgrading to the new config format. The tool 'bandit-config-generator' can help you with this. Support for legacy configs will be removed in a future bandit version. -Legacy blacklist data found in config, overriding data plugins -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data -tests.unit.core.test_config.TestConfigCompat.test_converted_blacklist_import_data ... ok -tests.unit.core.test_context.ContextTests.test_call_keywords -tests.unit.core.test_context.ContextTests.test_call_keywords ... ok -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude -tests.unit.core.test_manager.ManagerTests.test_discover_files_exclude ... ok -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json -tests.unit.core.test_manager.ManagerTests.test_populate_baseline_invalid_json ... ok -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat -tests.unit.core.test_test_set.BanditTestSetTests.test_profile_blacklist_compat ... ok -tests.unit.formatters.test_xml.XmlFormatterTests.test_report -tests.unit.formatters.test_xml.XmlFormatterTests.test_report ... ok -None ---------------------------------------------------------------------- -Ran 226 tests in 8.745s +Ran 226 tests in 5.381s OK + python3-stestr slowest -Test id Runtime (s) ----------------------------------------------------------------------------------------- ----------- -tests.functional.test_functional.FunctionalTests.test_ciphers 0.538 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error 0.534 -tests.functional.test_functional.FunctionalTests.test_xml 0.430 -tests.functional.test_functional.FunctionalTests.test_django_xss_secure 0.427 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure 0.405 -tests.functional.test_functional.FunctionalTests.test_django_xss_insecure 0.381 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit 0.359 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file 0.306 -tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure 0.295 -tests.functional.test_functional.FunctionalTests.test_httpoxy 0.290 +Test id Runtime (s) +----------------------------------------------------------------------------------------- ----------- +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_subprocess_error 0.499 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_git_command_failure 0.338 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_main_no_parent_commit 0.300 +tests.functional.test_functional.FunctionalTests.test_ciphers 0.261 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_git_command_failure 0.249 +tests.functional.test_functional.FunctionalTests.test_django_xss_secure 0.245 +tests.functional.test_functional.FunctionalTests.test_xml 0.243 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_existing_temp_file 0.240 +tests.unit.cli.test_baseline.BanditBaselineToolTests.test_initialize_with_output_argument 0.225 +tests.functional.test_functional.FunctionalTests.test_django_sql_injection 0.218 + rm -rf .stestr make[1]: Leaving directory '/build/bandit-1.5.1' create-stamp debian/debhelper-build-stamp @@ -3199,19 +3249,20 @@ pkgos-dh_auto_install + PKGOS_USE_PY2=yes + PKGOS_USE_PY3=yes -+ dpkg-parsechangelog -SSource +++ dpkg-parsechangelog -SSource + SRC_PKG_NAME=bandit -+ echo bandit -+ sed s/python-// +++ sed s/python-// +++ echo bandit + PY_MODULE_NAME=bandit -+ [ yes = yes ] -+ pyversions -vr ++ '[' yes = yes ']' +++ pyversions -vr + PYTHONS=2.7 -+ [ yes = yes ] -+ py3versions -vr ++ '[' yes = yes ']' +++ py3versions -vr + PYTHON3S=3.7 -+ [ yes = yes ] -+ pwd ++ '[' yes = yes ']' ++ for pyvers in ${PYTHONS} +++ pwd + python2.7 setup.py install --install-layout=deb --root /build/bandit-1.5.1/debian/python-bandit running install [pbr] Generating AUTHORS @@ -3365,39 +3416,17 @@ Installing bandit script to /build/bandit-1.5.1/debian/python-bandit/usr/bin Installing bandit-baseline script to /build/bandit-1.5.1/debian/python-bandit/usr/bin Installing bandit-config-generator script to /build/bandit-1.5.1/debian/python-bandit/usr/bin -+ [ yes = yes ] -+ pwd ++ '[' yes = yes ']' ++ for pyvers in ${PYTHON3S} +++ pwd + python3.7 setup.py install --install-layout=deb --root /build/bandit-1.5.1/debian/python3-bandit running install [pbr] Generating AUTHORS -[pbr] AUTHORS complete (0.1s) +[pbr] AUTHORS complete (0.0s) running build running build_py creating build/lib creating build/lib/bandit -copying bandit/__main__.py -> build/lib/bandit -copying bandit/__init__.py -> build/lib/bandit -creating build/lib/bandit/blacklists -copying bandit/blacklists/utils.py -> build/lib/bandit/blacklists -copying bandit/blacklists/imports.py -> build/lib/bandit/blacklists -copying bandit/blacklists/calls.py -> build/lib/bandit/blacklists -copying bandit/blacklists/__init__.py -> build/lib/bandit/blacklists -creating build/lib/bandit/formatters -copying bandit/formatters/yaml.py -> build/lib/bandit/formatters -copying bandit/formatters/xml.py -> build/lib/bandit/formatters -copying bandit/formatters/utils.py -> build/lib/bandit/formatters -copying bandit/formatters/text.py -> build/lib/bandit/formatters -copying bandit/formatters/screen.py -> build/lib/bandit/formatters -copying bandit/formatters/json.py -> build/lib/bandit/formatters -copying bandit/formatters/html.py -> build/lib/bandit/formatters -copying bandit/formatters/custom.py -> build/lib/bandit/formatters -copying bandit/formatters/csv.py -> build/lib/bandit/formatters -copying bandit/formatters/__init__.py -> build/lib/bandit/formatters -creating build/lib/bandit/cli -copying bandit/cli/main.py -> build/lib/bandit/cli -copying bandit/cli/config_generator.py -> build/lib/bandit/cli -copying bandit/cli/baseline.py -> build/lib/bandit/cli -copying bandit/cli/__init__.py -> build/lib/bandit/cli creating build/lib/bandit/core copying bandit/core/utils.py -> build/lib/bandit/core copying bandit/core/tester.py -> build/lib/bandit/core @@ -3415,6 +3444,29 @@ copying bandit/core/config.py -> build/lib/bandit/core copying bandit/core/blacklisting.py -> build/lib/bandit/core copying bandit/core/__init__.py -> build/lib/bandit/core +copying bandit/__main__.py -> build/lib/bandit +copying bandit/__init__.py -> build/lib/bandit +creating build/lib/bandit/cli +copying bandit/cli/main.py -> build/lib/bandit/cli +copying bandit/cli/config_generator.py -> build/lib/bandit/cli +copying bandit/cli/baseline.py -> build/lib/bandit/cli +copying bandit/cli/__init__.py -> build/lib/bandit/cli +creating build/lib/bandit/formatters +copying bandit/formatters/yaml.py -> build/lib/bandit/formatters +copying bandit/formatters/xml.py -> build/lib/bandit/formatters +copying bandit/formatters/utils.py -> build/lib/bandit/formatters +copying bandit/formatters/text.py -> build/lib/bandit/formatters +copying bandit/formatters/screen.py -> build/lib/bandit/formatters +copying bandit/formatters/json.py -> build/lib/bandit/formatters +copying bandit/formatters/html.py -> build/lib/bandit/formatters +copying bandit/formatters/custom.py -> build/lib/bandit/formatters +copying bandit/formatters/csv.py -> build/lib/bandit/formatters +copying bandit/formatters/__init__.py -> build/lib/bandit/formatters +creating build/lib/bandit/blacklists +copying bandit/blacklists/utils.py -> build/lib/bandit/blacklists +copying bandit/blacklists/imports.py -> build/lib/bandit/blacklists +copying bandit/blacklists/calls.py -> build/lib/bandit/blacklists +copying bandit/blacklists/__init__.py -> build/lib/bandit/blacklists creating build/lib/bandit/plugins copying bandit/plugins/yaml_load.py -> build/lib/bandit/plugins copying bandit/plugins/weak_cryptographic_key.py -> build/lib/bandit/plugins @@ -3478,6 +3530,29 @@ copying build/lib/bandit/plugins/try_except_pass.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/weak_cryptographic_key.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/plugins copying build/lib/bandit/plugins/yaml_load.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/plugins +creating /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists +copying build/lib/bandit/blacklists/__init__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists +copying build/lib/bandit/blacklists/calls.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists +copying build/lib/bandit/blacklists/imports.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists +copying build/lib/bandit/blacklists/utils.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists +creating /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/__init__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/csv.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/custom.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/html.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/json.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/screen.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/text.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/utils.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/xml.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +copying build/lib/bandit/formatters/yaml.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters +creating /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli +copying build/lib/bandit/cli/__init__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli +copying build/lib/bandit/cli/baseline.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli +copying build/lib/bandit/cli/config_generator.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli +copying build/lib/bandit/cli/main.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli +copying build/lib/bandit/__init__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit +copying build/lib/bandit/__main__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit creating /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core copying build/lib/bandit/core/__init__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core copying build/lib/bandit/core/blacklisting.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core @@ -3495,29 +3570,6 @@ copying build/lib/bandit/core/test_set.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core copying build/lib/bandit/core/tester.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core copying build/lib/bandit/core/utils.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core -creating /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli -copying build/lib/bandit/cli/__init__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli -copying build/lib/bandit/cli/baseline.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli -copying build/lib/bandit/cli/config_generator.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli -copying build/lib/bandit/cli/main.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli -creating /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/__init__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/csv.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/custom.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/html.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/json.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/screen.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/text.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/utils.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/xml.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -copying build/lib/bandit/formatters/yaml.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters -creating /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists -copying build/lib/bandit/blacklists/__init__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists -copying build/lib/bandit/blacklists/calls.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists -copying build/lib/bandit/blacklists/imports.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists -copying build/lib/bandit/blacklists/utils.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists -copying build/lib/bandit/__init__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit -copying build/lib/bandit/__main__.py -> /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/plugins/__init__.py to __init__.cpython-37.pyc byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/plugins/app_debug.py to app_debug.cpython-37.pyc byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/plugins/asserts.py to asserts.cpython-37.pyc @@ -3542,6 +3594,26 @@ byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/plugins/try_except_pass.py to try_except_pass.cpython-37.pyc byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/plugins/weak_cryptographic_key.py to weak_cryptographic_key.cpython-37.pyc byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/plugins/yaml_load.py to yaml_load.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists/__init__.py to __init__.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists/calls.py to calls.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists/imports.py to imports.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists/utils.py to utils.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/__init__.py to __init__.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/csv.py to csv.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/custom.py to custom.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/html.py to html.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/json.py to json.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/screen.py to screen.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/text.py to text.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/utils.py to utils.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/xml.py to xml.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/yaml.py to yaml.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli/__init__.py to __init__.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli/baseline.py to baseline.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli/config_generator.py to config_generator.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli/main.py to main.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/__init__.py to __init__.cpython-37.pyc +byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/__main__.py to __main__.cpython-37.pyc byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core/__init__.py to __init__.cpython-37.pyc byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core/blacklisting.py to blacklisting.cpython-37.pyc byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core/config.py to config.cpython-37.pyc @@ -3558,26 +3630,6 @@ byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core/test_set.py to test_set.cpython-37.pyc byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core/tester.py to tester.cpython-37.pyc byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/core/utils.py to utils.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli/__init__.py to __init__.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli/baseline.py to baseline.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli/config_generator.py to config_generator.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/cli/main.py to main.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/__init__.py to __init__.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/csv.py to csv.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/custom.py to custom.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/html.py to html.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/json.py to json.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/screen.py to screen.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/text.py to text.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/utils.py to utils.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/xml.py to xml.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/formatters/yaml.py to yaml.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists/__init__.py to __init__.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists/calls.py to calls.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists/imports.py to imports.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/blacklists/utils.py to utils.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/__init__.py to __init__.cpython-37.pyc -byte-compiling /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit/__main__.py to __main__.cpython-37.pyc running install_egg_info Copying bandit.egg-info to /build/bandit-1.5.1/debian/python3-bandit/usr/lib/python3/dist-packages/bandit-1.5.1.egg-info Skipping SOURCES.txt @@ -3587,40 +3639,43 @@ Installing bandit-config-generator script to /build/bandit-1.5.1/debian/python3-bandit/usr/bin /usr/lib/python3/dist-packages/pbr/packaging.py:407: EasyInstallDeprecationWarning: Use get_header header = easy_install.get_script_header("", executable, is_wininst) -+ pwd -+ rm -rf /build/bandit-1.5.1/debian/python*/usr/lib/python*/dist-packages/*.pth -+ pwd -+ [ -d /build/bandit-1.5.1/debian/python-bandit/usr/bin ] -+ pwd -+ basename /build/bandit-1.5.1/debian/python-bandit/usr/bin/bandit +++ pwd ++ rm -rf '/build/bandit-1.5.1/debian/python*/usr/lib/python*/dist-packages/*.pth' +++ pwd ++ '[' -d /build/bandit-1.5.1/debian/python-bandit/usr/bin ']' +++ pwd ++ for i in $(pwd)/debian/python-${PY_MODULE_NAME}/usr/bin/* +++ basename /build/bandit-1.5.1/debian/python-bandit/usr/bin/bandit + SCRIPT_NAME=bandit -+ [ yes = yes ] -+ pwd -+ pwd ++ '[' yes = yes ']' +++ pwd +++ pwd + mv /build/bandit-1.5.1/debian/python-bandit/usr/bin/bandit /build/bandit-1.5.1/debian/python-bandit/usr/bin/python2-bandit -+ [ yes = yes ] -+ pwd -+ pwd ++ '[' yes = yes ']' +++ pwd +++ pwd + mv /build/bandit-1.5.1/debian/python3-bandit/usr/bin/bandit /build/bandit-1.5.1/debian/python3-bandit/usr/bin/python3-bandit -+ basename /build/bandit-1.5.1/debian/python-bandit/usr/bin/bandit-baseline ++ for i in $(pwd)/debian/python-${PY_MODULE_NAME}/usr/bin/* +++ basename /build/bandit-1.5.1/debian/python-bandit/usr/bin/bandit-baseline + SCRIPT_NAME=bandit-baseline -+ [ yes = yes ] -+ pwd -+ pwd ++ '[' yes = yes ']' +++ pwd +++ pwd + mv /build/bandit-1.5.1/debian/python-bandit/usr/bin/bandit-baseline /build/bandit-1.5.1/debian/python-bandit/usr/bin/python2-bandit-baseline -+ [ yes = yes ] -+ pwd -+ pwd ++ '[' yes = yes ']' +++ pwd +++ pwd + mv /build/bandit-1.5.1/debian/python3-bandit/usr/bin/bandit-baseline /build/bandit-1.5.1/debian/python3-bandit/usr/bin/python3-bandit-baseline -+ basename /build/bandit-1.5.1/debian/python-bandit/usr/bin/bandit-config-generator ++ for i in $(pwd)/debian/python-${PY_MODULE_NAME}/usr/bin/* +++ basename /build/bandit-1.5.1/debian/python-bandit/usr/bin/bandit-config-generator + SCRIPT_NAME=bandit-config-generator -+ [ yes = yes ] -+ pwd -+ pwd ++ '[' yes = yes ']' +++ pwd +++ pwd + mv /build/bandit-1.5.1/debian/python-bandit/usr/bin/bandit-config-generator /build/bandit-1.5.1/debian/python-bandit/usr/bin/python2-bandit-config-generator -+ [ yes = yes ] -+ pwd -+ pwd ++ '[' yes = yes ']' +++ pwd +++ pwd + mv /build/bandit-1.5.1/debian/python3-bandit/usr/bin/bandit-config-generator /build/bandit-1.5.1/debian/python3-bandit/usr/bin/python3-bandit-config-generator # Generate the config file mkdir -p /build/bandit-1.5.1/debian/bandit/etc/bandit @@ -3652,14 +3707,14 @@ cat /usr/share/openstack-pkg-tools/init-script-template >>$MYINIT.init ; \ pkgos-gen-systemd-unit $i ; \ done -+ ls -1 debian/*.init.in +++ ls -1 'debian/*.init.in' ls: cannot access 'debian/*.init.in': No such file or directory # If there's a service.in file, use that one instead of the generated one set -e ; set -x ; for i in `ls -1 debian/*.service.in`; do \ MYPKG=`echo $i | sed s/.service.in//` ; \ cp $MYPKG.service.in $MYPKG.service ; \ done -+ ls -1 debian/*.service.in +++ ls -1 'debian/*.service.in' ls: cannot access 'debian/*.service.in': No such file or directory # Generate the systemd unit if there's no already existing .service.in set -e ; set -x ; for i in `ls debian/*.init.in` ; do \ @@ -3668,7 +3723,7 @@ pkgos-gen-systemd-unit $i ; \ fi \ done -+ ls debian/*.init.in +++ ls 'debian/*.init.in' ls: cannot access 'debian/*.init.in': No such file or directory dh_systemd_enable make[1]: Leaving directory '/build/bandit-1.5.1' @@ -3695,14 +3750,14 @@ cat /usr/share/openstack-pkg-tools/init-script-template >>$MYINIT.init ; \ pkgos-gen-systemd-unit $i ; \ done -+ ls -1 debian/*.init.in +++ ls -1 'debian/*.init.in' ls: cannot access 'debian/*.init.in': No such file or directory # If there's a service.in file, use that one instead of the generated one set -e ; set -x ; for i in `ls -1 debian/*.service.in`; do \ MYPKG=`echo $i | sed s/.service.in//` ; \ cp $MYPKG.service.in $MYPKG.service ; \ done -+ ls -1 debian/*.service.in +++ ls -1 'debian/*.service.in' ls: cannot access 'debian/*.service.in': No such file or directory # Generate the systemd unit if there's no already existing .service.in set -e ; set -x ; for i in `ls debian/*.init.in` ; do \ @@ -3711,7 +3766,7 @@ pkgos-gen-systemd-unit $i ; \ fi \ done -+ ls debian/*.init.in +++ ls 'debian/*.init.in' ls: cannot access 'debian/*.init.in': No such file or directory dh_installinit --error-handler=true make[1]: Leaving directory '/build/bandit-1.5.1' @@ -3739,8 +3794,8 @@ make[1]: Leaving directory '/build/bandit-1.5.1' dh_md5sums -O--buildsystem=python_distutils dh_builddeb -O--buildsystem=python_distutils -dpkg-deb: building package 'python-bandit' in '../python-bandit_1.5.1-1_all.deb'. dpkg-deb: building package 'bandit' in '../bandit_1.5.1-1_all.deb'. +dpkg-deb: building package 'python-bandit' in '../python-bandit_1.5.1-1_all.deb'. dpkg-deb: building package 'python3-bandit' in '../python3-bandit_1.5.1-1_all.deb'. dpkg-genbuildinfo --build=binary dpkg-genchanges --build=binary >../bandit_1.5.1-1_amd64.changes @@ -3750,12 +3805,14 @@ dpkg-buildpackage: info: binary-only upload (no source included) dpkg-genchanges: info: including full source code in upload I: copying local configuration +I: user script /srv/workspace/pbuilder/3408237/tmp/hooks/B01_cleanup starting +I: user script /srv/workspace/pbuilder/3408237/tmp/hooks/B01_cleanup finished I: unmounting dev/ptmx filesystem I: unmounting dev/pts filesystem I: unmounting dev/shm filesystem I: unmounting proc filesystem I: unmounting sys filesystem I: cleaning the build env -I: removing directory /srv/workspace/pbuilder/715190 and its subdirectories -I: Current time: Sun Nov 28 18:33:42 -12 2021 -I: pbuilder-time-stamp: 1638167622 +I: removing directory /srv/workspace/pbuilder/3408237 and its subdirectories +I: Current time: Mon Jan 2 02:59:06 +14 2023 +I: pbuilder-time-stamp: 1672577946