ci/fix: fixed bandit issues

Added two lines to be skipped by bandit, as they are false positives.
sse-secure-systems · Dec 15, 2020 · 742dcd0 · 742dcd0
1 parent 192e575
commit 742dcd0
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 5 deletions.
diff --git a/connaisseur/__main__.py b/connaisseur/__main__.py
@@ -12,9 +12,7 @@
         {
             "version": 1,
             "formatters": {
-                "default": {
-                    "format": "[%(asctime)s] %(levelname)s: %(message)s",
-                }
+                "default": {"format": "[%(asctime)s] %(levelname)s: %(message)s"}
             },
             "handlers": {
                 "wsgi": {
@@ -27,4 +25,9 @@
         }
     )
 
-    APP.run(host="0.0.0.0", ssl_context=("/etc/certs/tls.crt", "/etc/certs/tls.key"))
+    # the host needs to be set to `0.0.0.0` so it can be reachable from outside the
+    # container
+    APP.run(
+        host="0.0.0.0",  # nosec
+        ssl_context=("/etc/certs/tls.crt", "/etc/certs/tls.key"),
+    )
diff --git a/connaisseur/notary_api.py b/connaisseur/notary_api.py
@@ -185,7 +185,7 @@ def get_auth_token(url: str):
             "no token in authentication server response.", {"auth_url": url}
         )
 
-    token_re = r"^[A-Za-z0-9-_=]+\.[A-Za-z0-9-_=]+\.?[A-Za-z0-9-_.+/=]*$"
+    token_re = r"^[A-Za-z0-9-_=]+\.[A-Za-z0-9-_=]+\.?[A-Za-z0-9-_.+/=]*$"  # nosec
 
     if not re.match(token_re, token):
         raise InvalidFormatException(