[all][stable] bandit 1.6.3 drops py2 support

Jeremy Stanley fungi at yuggoth.org
Thu Dec 10 17:04:00 UTC 2020

On 2020-12-10 15:42:13 +0100 (+0100), Bernard Cafarelli wrote:
> This may get complicated to sort out, checking neutron cap [1], it failed
> in grenade job when checking out bandit per swift requirements.
> So it seems this one will need to be backported from the oldest affected
> stable to train, with some "correct order" on packages - though if we need
> it on 2 packages at same time to pass gates it may need overall capping?
> [1] https://review.opendev.org/c/openstack/neutron/+/766218

Oh wow, this is the first I've realized devstack installed
test-requirements.txt for every project. That's a total mess since
projects are totally encouraged to use different versions of test
requirements where things like linters and static analyzers are
concerned. Can't https://review.opendev.org/715469 be backported?
Jeremy Stanley
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: not available
URL: <http://lists.openstack.org/pipermail/openstack-discuss/attachments/20201210/81366cda/attachment.sig>

More information about the openstack-discuss mailing list