52c2400786
Bandit automatically [uses any .bandit file] within the directories on which it is invoked. Since ALE invokes bandit on stdin, it does not load a .bandit file automatically. Add support for automatically finding a .bandit file and passing it to bandit via the --ini option along with a variable to disable this behavior if desired. Note: This is useful for the skips and tests configuration options, but not exclude which would require invoking bandit using a file name, which may or may not be a good trade-off. [uses any .bandit file]: https://github.com/PyCQA/bandit/blob/1.5.1/bandit/cli/main.py#L70-L73 Signed-off-by: Kevin Locke <kevin@kevinlocke.name>
72 lines
2.0 KiB
Plaintext
72 lines
2.0 KiB
Plaintext
Before:
|
|
call ale#assert#SetUpLinterTest('python', 'bandit')
|
|
let b:bandit_flags = ' --format custom '
|
|
\ . '--msg-template "{line}:{test_id}:{severity}:{msg}" '
|
|
|
|
After:
|
|
call ale#assert#TearDownLinterTest()
|
|
unlet! b:bandit_flags
|
|
|
|
Execute(The bandit command callback should return default string):
|
|
AssertLinter 'bandit',
|
|
\ ale#Escape('bandit')
|
|
\ . b:bandit_flags
|
|
\ . ' -'
|
|
|
|
Execute(The bandit command callback should allow options):
|
|
let g:ale_python_bandit_options = '--configfile bandit.yaml'
|
|
|
|
AssertLinter 'bandit',
|
|
\ ale#Escape('bandit')
|
|
\ . b:bandit_flags
|
|
\ . ' --configfile bandit.yaml -'
|
|
|
|
Execute(The bandit executable should be configurable):
|
|
let g:ale_python_bandit_executable = '~/.local/bin/bandit'
|
|
|
|
AssertLinter '~/.local/bin/bandit',
|
|
\ ale#Escape('~/.local/bin/bandit')
|
|
\ . b:bandit_flags
|
|
\ . ' -'
|
|
|
|
Execute(Setting executable to 'pipenv' appends 'run bandit'):
|
|
let g:ale_python_bandit_executable = 'path/to/pipenv'
|
|
|
|
AssertLinter 'path/to/pipenv',
|
|
\ ale#Escape('path/to/pipenv')
|
|
\ . ' run bandit'
|
|
\ . b:bandit_flags
|
|
\ . ' -'
|
|
|
|
Execute(Pipenv is detected when python_bandit_auto_pipenv is set):
|
|
let g:ale_python_bandit_auto_pipenv = 1
|
|
call ale#test#SetFilename('/testplugin/test/python_fixtures/pipenv/whatever.py')
|
|
|
|
AssertLinter 'pipenv',
|
|
\ ale#Escape('pipenv')
|
|
\ . ' run bandit'
|
|
\ . b:bandit_flags
|
|
\ . ' -'
|
|
|
|
Execute(The bandit command callback should add .bandit by default):
|
|
silent execute 'file ' . fnameescape(g:dir . '/python_paths/with_bandit/namespace/foo/bar.py')
|
|
|
|
let b:config_path = ale#path#Simplify(
|
|
\ g:dir . '/python_paths/with_bandit/.bandit'
|
|
\)
|
|
|
|
AssertLinter 'bandit',
|
|
\ ale#Escape('bandit')
|
|
\ . ' --ini ' . ale#Escape(b:config_path)
|
|
\ . b:bandit_flags
|
|
\ . ' -'
|
|
|
|
Execute(The bandit command callback should support not using .bandit):
|
|
silent execute 'file ' . fnameescape(g:dir . '/python_paths/with_bandit/subdir/foo/bar.py')
|
|
let g:ale_python_bandit_use_config = 0
|
|
|
|
AssertLinter 'bandit',
|
|
\ ale#Escape('bandit')
|
|
\ . b:bandit_flags
|
|
\ . ' -'
|