Cap Bandit below 1.6.0 and update Sphinx requirement

Bandit 1.6.0 accidentally changed how the exclusion list option is handled and breaks our use of it. Cap to the previous version until Bandit has fixed the problem. Sphinx 2.0 no longer works on python 2.7, so we need to start capping it there as well. Change-Id: Ib340f5822b124e78cd96ee12f9f033d5f313e238 Reference: https://github.com/PyCQA/bandit/pull/489
author: Ben Nemec <bnemec@redhat.com> 2019-05-13 17:02:59 +0000
committer: Ben Nemec <bnemec@redhat.com> 2019-05-13 17:41:41 +0000
commit: fac974b1a0292dfaa230de569ac97c18f345c23b (patch)
tree: cf3df7d1714306f78b8ca26c52fcbe40d24d5a9f /test-requirements.txt
parent: 3280b697acd89f3ac54e66829936a06eada2e803 (diff)
download: oslo-concurrency-fac974b1a0292dfaa230de569ac97c18f345c23b.tar.gz
1 files changed, 1 insertions, 1 deletions
diff --git a/test-requirements.txt b/test-requirements.txt
index fdd78b2..2ad4326 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -12,4 +12,4 @@ stestr>=2.0.0 # Apache-2.0
 eventlet!=0.18.3,!=0.20.1,>=0.18.2 # MIT
 
 # Bandit security code scanner
-bandit>=1.1.0 # Apache-2.0
+bandit>=1.1.0,<1.6.0 # Apache-2.0
author	Ben Nemec <bnemec@redhat.com>	2019-05-13 17:02:59 +0000
committer	Ben Nemec <bnemec@redhat.com>	2019-05-13 17:41:41 +0000
commit	fac974b1a0292dfaa230de569ac97c18f345c23b (patch)
tree	cf3df7d1714306f78b8ca26c52fcbe40d24d5a9f /test-requirements.txt
parent	3280b697acd89f3ac54e66829936a06eada2e803 (diff)
download	oslo-concurrency-fac974b1a0292dfaa230de569ac97c18f345c23b.tar.gz