diff --git a/decrypt_oracle/tox.ini b/decrypt_oracle/tox.ini
index 7020f8f65..796c5a1c9 100644
--- a/decrypt_oracle/tox.ini
+++ b/decrypt_oracle/tox.ini
@@ -245,8 +245,7 @@ commands = python setup.py check -r -s
 [testenv:bandit]
 basepython = python3
 deps =
-    # Pull bandit from github because they haven't published 1.4.1 to pypi yet
-    git+git://github.com/PyCQA/bandit.git@master
+    bandit>=1.5.1
 commands = bandit -r src/aws_encryption_sdk_decrypt_oracle/
 
 # Prone to false positives: only run independently
diff --git a/test_vector_handlers/tox.ini b/test_vector_handlers/tox.ini
index 60531c9ff..6145db379 100644
--- a/test_vector_handlers/tox.ini
+++ b/test_vector_handlers/tox.ini
@@ -221,8 +221,7 @@ commands = python setup.py check -r -s
 [testenv:bandit]
 basepython = python3
 deps =
-    # Pull bandit from github because they haven't published 1.4.1 to pypi yet
-    git+git://github.com/PyCQA/bandit.git@master
+    bandit>=1.5.1
 commands = bandit -r src/awses_test_vectors/
 
 # Prone to false positives: only run independently
diff --git a/tox.ini b/tox.ini
index 04a6b6039..78390803d 100644
--- a/tox.ini
+++ b/tox.ini
@@ -250,8 +250,7 @@ commands = python setup.py check -r -s
 [testenv:bandit]
 basepython = python3
 deps = 
-    # Pull bandit from github because they haven't published 1.4.1 to pypi yet
-    git+git://github.com/PyCQA/bandit.git@master
+    bandit>=1.5.1
 commands = bandit -r src/aws_encryption_sdk/
 
 # Prone to false positives: only run independently