From cc33c103d412d5032ba638d0894f45528f2db2b7 Mon Sep 17 00:00:00 2001
From: Travis McPeak <tmcpeak@us.ibm.com>
Date: Thu, 28 Apr 2016 12:27:51 -0500
Subject: [PATCH] Adding a few #nosec tags to prepare for Bandit usage

This commit adds a few #nosec tags for non-issues.  I've examined
the code and determined that these don't represent security issues
so we should add a #nosec tag that tells Bandit not to find these
issues in the future.

Closes-Bug: #1577498
Change-Id: Ic37216c08442c700c64118c78cfb46e6cedd237c
---
 kolla/cmd/build.py | 3 ++-
 setup.py           | 2 +-
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/kolla/cmd/build.py b/kolla/cmd/build.py
index 477d85c18..5a00b1d80 100755
--- a/kolla/cmd/build.py
+++ b/kolla/cmd/build.py
@@ -473,7 +473,8 @@ class KollaWorker(object):
         kolla_version = version.version_info.cached_version_string()
         for path in self.docker_build_paths:
             template_name = "Dockerfile.j2"
-            env = jinja2.Environment(loader=jinja2.FileSystemLoader(path))
+            env = jinja2.Environment(  # nosec: not used to render HTML
+                loader=jinja2.FileSystemLoader(path))
             template = env.get_template(template_name)
             values = {'base_distro': self.base,
                       'base_distro_tag': self.base_tag,
diff --git a/setup.py b/setup.py
index 782bb21f0..c48a5b867 100644
--- a/setup.py
+++ b/setup.py
@@ -21,7 +21,7 @@ import setuptools
 # solution from: http://bugs.python.org/issue15881#msg170215
 try:
     import multiprocessing  # noqa
-except ImportError:
+except ImportError:  # nosec : empty pass is expected behavior
     pass
 
 setuptools.setup(
-- 
GitLab