tox: safety, bandit and pip-compile

fedora-modularity · Sep 26, 2023 · 6242a0f · 6242a0f
1 parent 9534b17
commit 6242a0f
Show file tree

Hide file tree

Showing 6 changed files with 1,782 additions and 15 deletions.
diff --git a/dev-requirements.in b/dev-requirements.in
@@ -0,0 +1,6 @@
+-r requirements.txt
+
+flake8
+mock
+pytest
+pytest-cov
diff --git a/dev-requirements.txt b/dev-requirements.txt
diff --git a/requirements-no-hashes.txt b/requirements-no-hashes.txt
@@ -0,0 +1,134 @@
+#
+# This file is autogenerated by pip-compile with Python 3.10
+# by the following command:
+#
+#    pip-compile --output-file=requirements-no-hashes.txt
+#
+attrs==23.1.0
+    # via
+    #   automat
+    #   jsonschema
+    #   referencing
+    #   service-identity
+    #   twisted
+automat==22.10.0
+    # via twisted
+blinker==1.6.2
+    # via
+    #   fedora-messaging
+    #   flask
+certifi==2023.7.22
+    # via requests
+cffi==1.15.1
+    # via
+    #   cryptography
+    #   python-qpid-proton
+charset-normalizer==3.2.0
+    # via requests
+click==8.1.7
+    # via
+    #   fedora-messaging
+    #   flask
+constantly==15.1.0
+    # via twisted
+crochet==2.1.1
+    # via fedora-messaging
+cryptography==41.0.4
+    # via
+    #   pyopenssl
+    #   service-identity
+decorator==5.1.1
+    # via gssapi
+fedora-messaging==3.4.1
+    # via -r requirements.in
+flask==2.3.3
+    # via -r requirements.in
+gssapi==1.8.3
+    # via requests-gssapi
+hyperlink==21.0.0
+    # via twisted
+idna==3.4
+    # via
+    #   hyperlink
+    #   requests
+incremental==22.10.0
+    # via twisted
+itsdangerous==2.1.2
+    # via flask
+jinja2==3.1.2
+    # via flask
+jsonschema==4.19.1
+    # via fedora-messaging
+jsonschema-specifications==2023.7.1
+    # via jsonschema
+koji==1.33.1
+    # via -r requirements.in
+markupsafe==2.1.3
+    # via
+    #   jinja2
+    #   werkzeug
+pika==1.3.2
+    # via fedora-messaging
+prometheus-client==0.17.1
+    # via -r requirements.in
+psutil==5.9.5
+    # via -r requirements.in
+pyasn1==0.5.0
+    # via
+    #   pyasn1-modules
+    #   service-identity
+pyasn1-modules==0.3.0
+    # via service-identity
+pycparser==2.21
+    # via cffi
+pyopenssl==23.2.0
+    # via fedora-messaging
+python-dateutil==2.8.2
+    # via koji
+python-qpid-proton==0.39.0
+    # via -r requirements.in
+pytz==2023.3.post1
+    # via fedora-messaging
+pyyaml==6.0.1
+    # via -r requirements.in
+referencing==0.30.2
+    # via
+    #   jsonschema
+    #   jsonschema-specifications
+requests==2.31.0
+    # via
+    #   -r requirements.in
+    #   koji
+    #   requests-gssapi
+requests-gssapi==1.2.3
+    # via koji
+rpds-py==0.10.3
+    # via
+    #   jsonschema
+    #   referencing
+service-identity==23.1.0
+    # via fedora-messaging
+six==1.16.0
+    # via
+    #   automat
+    #   koji
+    #   python-dateutil
+tomli==2.0.1
+    # via fedora-messaging
+twisted==23.8.0
+    # via
+    #   crochet
+    #   fedora-messaging
+typing-extensions==4.8.0
+    # via twisted
+urllib3==2.0.5
+    # via requests
+werkzeug==2.3.7
+    # via flask
+wrapt==1.15.0
+    # via crochet
+zope-interface==6.0
+    # via twisted
+
+# The following packages are considered to be unsafe in a requirements file:
+# setuptools
diff --git a/requirements.in b/requirements.in
@@ -0,0 +1,9 @@
+Flask
+PyYAML
+koji
+psutil
+python-qpid-proton
+requests
+prometheus_client
+fedora-messaging
+# rhmsg is not available in PyPI so far.