A tool for finding security issues in Python code (https://bandit.readthedocs.io).
Don't use Bandit when running `./pants lint`
Arguments to pass directly to Bandit, e.g. `--bandit-args="--skip B101,B308 --confidence"`
Requirement string for the tool.
--bandit-extra-requirements="['<str>', '<str>', ...]"
[ "setuptools<45", "stevedore<3" ]
Any additional requirement strings to use with the tool. This is useful if the tool allows you to install plugins or if you need to constrain a dependency to a certain version.
The console script for the tool. Using this option is generally preferable to (and mutually exclusive with) specifying an --entry-point since console script names have a higher expectation of staying stable across releases of the tool. Usually, you will not want to change this from the default.
The entry point for the tool. Generally you only want to use this option if the tool does not offer a --console-script (which this option is mutually exclusive with). Usually, you will not want to change this from the default.
Path to a Bandit YAML config file
Updated about a month ago