From e239ce326755e476521e35d7cbb680d1358b5883 Mon Sep 17 00:00:00 2001
From: Étienne Loks <etienne.loks@iggdrasil.net>
Date: Mon, 1 Dec 2025 11:48:43 +0100
Subject: 🔒️ fix bandit warnings
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 archaeological_finds/tests.py | 7 ++++---
 1 file changed, 4 insertions(+), 3 deletions(-)

(limited to 'archaeological_finds/tests.py')

diff --git a/archaeological_finds/tests.py b/archaeological_finds/tests.py
index 26e9b6dc5..f105093fd 100644
--- a/archaeological_finds/tests.py
+++ b/archaeological_finds/tests.py
@@ -2066,7 +2066,8 @@ class FindPermissionTest(FindInit, TestPermissionQuery, TestCase):
         username, password, user = create_superuser()
         self.users["superuser"] = (username, password, user)
 
-        upstream_username, upstream_password, upstream_user = create_user(
+        # nosec: hard coded password for test purposes
+        upstream_username, upstream_password, upstream_user = create_user(  # nosec
             username="up", password="up"
         )
         UserProfile.objects.create(
@@ -2121,8 +2122,8 @@ class FindPermissionTest(FindInit, TestPermissionQuery, TestCase):
         self.operations[-1].context_record.all()[0].ishtar_users.add(
             upstream_user.ishtaruser
         )
-
-        associated_username, associated_password, associated_user = create_user(
+        # nosec: hard coded password for test purposes
+        associated_username, associated_password, associated_user = create_user(  # nosec
             username="as", password="as"
         )
         UserProfile.objects.create(
-- 
cgit v1.2.3