[Yahoo-eng-team] [Bug 1465922] Re: Password visible in clear text in keystone.log when user created and keystone debug logging is enabled

For Bandit I'm marking "Won't fix": Offending code is: LOG.debug('RBAC: Authorizing %(action)s(%(kwargs)s)', { 'action': action, 'kwargs': ', '.join(['%s=%s' % (k, kwargs[k]) for k in kwargs])}) There's no indication of what the kwargs are, so without a runtime integration (ta

[Yahoo-eng-team] [Bug 1258166] [NEW] N310 check recommends function that doesn't exist

Public bug reported: Check N310 can return "N310 timeutils.now() must be used instead of datetime.now()", but timeutils.now() does not exist. Only utcnow() does. ** Affects: nova Importance: Undecided Status: New -- You received this bug notification because you are a member of Y

[Yahoo-eng-team] [Bug 1257405] [NEW] Not checking image format produces lots of useless messages

Public bug reported: The code for resizing partitionless images goes with the "tell, don't ask" idea and attempts to run extfs / mount utilities on an image even though they may fail. This produces lots of useless messages during the instance preparation, like these: 2013-11-21 06:45:07 20902 DEB