[oslo] Bandit Strategy

Jeremy Stanley fungi at yuggoth.org
Wed Jun 5 16:32:56 UTC 2019

On 2019-06-05 11:27:09 -0500 (-0500), Ben Nemec wrote:
> Agreed. There's probably an argument that we should cap bandit on
> stable branches anyway, but it would save us a lot of tedious
> patches if we just hope bandit doesn't break us again. :-)

Oh, yes, I think capping on stable is probably a fine idea
regardless (we should be doing that anyway for all our static
analyzers on principle). What I meant is that it would likely render
those updates no longer urgent.
Jeremy Stanley
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 963 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20190605/5a3fc459/attachment.sig>

More information about the openstack-discuss mailing list