From a7f05ab7be7525c2053cfc33a57454078b988015 Mon Sep 17 00:00:00 2001
From: Peter Hamilton <peter.allen.hamilton@gmail.com>
Date: Thu, 9 May 2019 10:40:19 -0400
Subject: [PATCH] Temporarily pin bandit to 1.5.1

A recent regression in bandit 1.6.0 permits the scanning of test
files for vulnerabilities even when those files should be excluded
using the '-x' flag. This change temporarily pins bandit to 1.5.1
in test-requirements.txt to get around this issue in the short
term.

This patch should be undone once bandit 1.6.1 is released, fixing
this issue.
---
 test-requirements.txt | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/test-requirements.txt b/test-requirements.txt
index 32d6311..3d61d4c 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -6,4 +6,4 @@ fixtures
 mock
 slugs
 sphinx
-bandit
+bandit==1.5.1