Add bandit code static analyzer for security, some false positives removed with #nosec.

Bandit is a python package for staticly scanning code for security issues. * Added to tox.ini * Added to setup.py * Added to .travis.yml As part of CI/CD pipeline
2019-06-23 23:20:00 +02:00
parent d2094fed38
commit 78fe97b9cb
4 changed files with 16 additions and 4 deletions
--- a/sanic/config.py
+++ b/sanic/config.py
@@ -80,7 +80,7 @@ class Config(dict):
        module.__file__ = filename
        try:
            with open(filename) as config_file:
-                exec(
+                exec(  # nosec
                    compile(config_file.read(), filename, "exec"),
                    module.__dict__,
                )