1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
|
#!/usr/bin/env python
# --------------------------------------------------------------------------------------------
# Copyright (c) Microsoft Corporation. All rights reserved.
# Licensed under the MIT License. See License.txt in the project root for license information.
# --------------------------------------------------------------------------------------------
# This script is used to execute bandit within a tox environment. Depending on which package is being executed against,
# a failure may be suppressed.
from subprocess import check_call, CalledProcessError
import argparse
import os
import logging
import sys
logging.getLogger().setLevel(logging.INFO)
if __name__ == "__main__":
parser = argparse.ArgumentParser(description="Run bandit against target folder.")
parser.add_argument(
"-t",
"--target",
dest="target_package",
help="The target package directory on disk. The target module passed to bandit will be <target_package>/azure.",
required=True,
)
args = parser.parse_args()
package_name = os.path.basename(os.path.abspath(args.target_package))
try:
check_call(
[
sys.executable,
"-m",
"bandit",
"-r",
os.path.join(args.target_package, "azure"),
"-ll",
]
)
except CalledProcessError as e:
logging.error("{} exited with error {}".format(package_name, e.returncode))
exit(1)
|
