Merge "Avoid false positives of Jinja2 in Bandit scan"

2017-07-19 20:15:34 +00:00 · 2017-07-19 20:15:34 +00:00 · 48cb13e501
commit 48cb13e501
parent 5c322924fa 398d24de68
2 changed files with 5 additions and 3 deletions
--- a/nova/console/xvp.py
+++ b/nova/console/xvp.py
@ -87,7 +87,8 @@ class XVPConsoleProxy(object):
        conf_data = {'multiplex_port': CONF.xvp.console_xvp_multiplex_port,
                     'pools': pools}
        tmpl_path, tmpl_file = os.path.split(CONF.injected_network_template)
-        env = jinja2.Environment(loader=jinja2.FileSystemLoader(tmpl_path))
+        env = jinja2.Environment(  # nosec
+            loader=jinja2.FileSystemLoader(tmpl_path))  # nosec
        env.filters['pass_encode'] = self.fix_console_password
        template = env.get_template(tmpl_file)
        self._write_conf(template.render(conf_data))
--- a/nova/virt/netutils.py
+++ b/nova/virt/netutils.py
@ -155,8 +155,9 @@ def get_injected_network_template(network_info, template=None,
        return

    tmpl_path, tmpl_file = os.path.split(template)
-    env = jinja2.Environment(loader=jinja2.FileSystemLoader(tmpl_path),
-                             trim_blocks=True)
+    env = jinja2.Environment(  # nosec
+        loader=jinja2.FileSystemLoader(tmpl_path),  # nosec
+        trim_blocks=True)
    template = env.get_template(tmpl_file)
    return template.render({'interfaces': nets,
                            'use_ipv6': ipv6_is_available,