diff --git a/bandit.yaml b/bandit.yaml
index 529ef8f7..5a436a45 100644
--- a/bandit.yaml
+++ b/bandit.yaml
@@ -21,7 +21,6 @@ plugin_name_pattern: '*.py'
 # globs of files which should be analyzed
 include:
     - '*.py'
-    - '*.pyw'
 
 # a list of strings, which if found in the path will cause files to be excluded
 # for example /tests/ - to remove all all files in tests directory
@@ -47,7 +46,7 @@ profiles:
         include:
             - hardcoded_sql_expressions
 
-blacklist_functions:
+blacklist_calls:
     bad_name_sets:
         - pickle:
             qualnames: [pickle.loads, pickle.load, pickle.Unpickler,
diff --git a/test-requirements-bandit.txt b/test-requirements-bandit.txt
deleted file mode 100644
index 38c39e1b..00000000
--- a/test-requirements-bandit.txt
+++ /dev/null
@@ -1 +0,0 @@
-bandit==0.10.1
diff --git a/test-requirements.txt b/test-requirements.txt
index 5346047e..79db63db 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -22,3 +22,5 @@ coverage>=3.6
 # this is required for the docs build jobs
 oslosphinx>=2.5.0  # Apache-2.0
 sphinx>=1.1.2,!=1.2.0,!=1.3b1,<1.3
+
+bandit>=0.10.1
diff --git a/tox.ini b/tox.ini
index b2f7528e..7db19c14 100644
--- a/tox.ini
+++ b/tox.ini
@@ -17,8 +17,8 @@ deps = -r{toxinidir}/requirements.txt
 commands = pylint oslo
 
 [testenv:bandit]
-deps = -r{toxinidir}/test-requirements-bandit.txt
-commands = bandit -c bandit.yaml -r oslo_vmware -n 5
+deps = -r{toxinidir}/test-requirements.txt
+commands = bandit -c bandit.yaml -r oslo_vmware -n 5 -ll
 
 [testenv:docs]
 commands = python setup.py build_sphinx