Follow bandit B105: hardcoded_password_string

tox -e bandit failing due to the string 'token' in [1]. According to the bandit 105 any password assigned to a string should not contain any of the variables in [2] [1]https://github.com/openstack/python-keystoneclient/blob/master/keystoneclient/common/cms.py#L41 [2]https://bandit.readthedocs.io/en/latest/plugins/b105_hardcoded_password_string.html Change-Id: I822e1195532df2b701f10087cabceda458211986
author: Vishakha Agarwal <agarwalvishakha18@gmail.com> 2019-06-25 14:09:47 +0530
committer: Vishakha Agarwal <agarwalvishakha18@gmail.com> 2019-06-26 16:05:43 +0530
commit: 7b7d81d09e4168a901cf14eb78f33d5725a75875 (patch)
tree: 0bf2257c1d02c9bc3386fa0773485800f6a6c341
parent: 73436a76ba520b2e2a19e21067f0ffb5ce412250 (diff)
download: python-keystoneclient-7b7d81d09e4168a901cf14eb78f33d5725a75875.tar.gz
1 files changed, 2 insertions, 1 deletions
diff --git a/keystoneclient/common/cms.py b/keystoneclient/common/cms.py
index 9c3e0bd..abd6ef6 100644
--- a/keystoneclient/common/cms.py
+++ b/keystoneclient/common/cms.py
@@ -38,7 +38,8 @@ PKI_ASN1_PREFIX = 'MII'
 PKIZ_PREFIX = 'PKIZ_'
 PKIZ_CMS_FORM = 'DER'
 PKI_ASN1_FORM = 'PEM'
-DEFAULT_TOKEN_DIGEST_ALGORITHM = 'sha256'
+# Adding nosec since this fails bandit B105, 'Possible hardcoded password'.
+DEFAULT_TOKEN_DIGEST_ALGORITHM = 'sha256'  # nosec
 
 
 # The openssl cms command exits with these status codes.
author	Vishakha Agarwal <agarwalvishakha18@gmail.com>	2019-06-25 14:09:47 +0530
committer	Vishakha Agarwal <agarwalvishakha18@gmail.com>	2019-06-26 16:05:43 +0530
commit	7b7d81d09e4168a901cf14eb78f33d5725a75875 (patch)
tree	0bf2257c1d02c9bc3386fa0773485800f6a6c341
parent	73436a76ba520b2e2a19e21067f0ffb5ce412250 (diff)
download	python-keystoneclient-7b7d81d09e4168a901cf14eb78f33d5725a75875.tar.gz