Revamp Bandit Config Layout
The Bandit config has grown to be unwieldy over time. It's comprised of three distinct parts:
Bandit program config options - these are generally unused
Profiles - are used to disable/enable plugins
Plugin options - these are used to configure and customize the behavior of plugins
The proposal is to get rid of the config options (since they aren't used), move profiles to a separate file, and automatically generate config options, which can be overridden in the profiles.
Blueprint information
- Status:
- Complete
- Approver:
- None
- Priority:
- Undefined
- Drafter:
- Travis McPeak
- Direction:
- Needs approval
- Assignee:
- None
- Definition:
- Approved
- Series goal:
- Accepted for 1.0
- Implementation:
-
Implemented
- Milestone target:
- None
- Started by
- Tim Kelsey
- Completed by
- Eric Brown
Related branches
Related bugs
Sprints
Whiteboard
see https:/
see https:/
Gerrit topic: https:/
Addressed by: https:/
Remove show_progress_every from Bandit config file
Addressed by: https:/
Screen formatter
Addressed by: https:/
Test IDs
Gerrit topic: https:/
Addressed by: https:/
Adding test IDs
Addressed by: https:/
Putting plugin config in code
Work Items
Work items:
Strip out misc options: DONE
Add separate text formatter that includes terminal output: DONE
Support external profile files: TODO
Convert plugins to classes which implement one or more tests and a config generator: DONE
Assign canonical numbers to plugins: DONE
Update the config generator to output default configs: TODO
Delete the config file bundled with Bandit: DONE
