From 517775f8fb21a75835aea74b5e09f78c1bbbb7e1 Mon Sep 17 00:00:00 2001 From: Andreas Maier Date: Sun, 18 Aug 2024 14:51:01 +0200 Subject: [PATCH] Addressed safety issues; Added missing dependency psutil (#211) Signed-off-by: Andreas Maier --- .safety-policy.yml | 4 ++++ docs/changes.rst | 2 +- minimum-constraints.txt | 10 ++++++---- 3 files changed, 11 insertions(+), 5 deletions(-) diff --git a/.safety-policy.yml b/.safety-policy.yml index afd68e1..7c7dc84 100644 --- a/.safety-policy.yml +++ b/.safety-policy.yml @@ -60,6 +60,10 @@ security: reason: Fixed Jinja2 version 3.1.4 requires Python>=3.7 and is used there 71636: reason: Fixed authlib version 1.3.1 requires Python>=3.8 and is used there + 72132: + reason: Fixed zipp version 3.19.1 requires Python>=3.8 and is used there + 72236: + reason: Fixed setuptools version 70.0.0 requires Python>=3.8 and is used there # Continue with exit code 0 when vulnerabilities are found. continue-on-vulnerability-error: False diff --git a/docs/changes.rst b/docs/changes.rst index efc3ead..459385e 100644 --- a/docs/changes.rst +++ b/docs/changes.rst @@ -16,7 +16,7 @@ Released: not yet **Bug fixes:** -* Fixed safety issues up to 2024-07-21. +* Fixed safety issues up to 2024-08-18. **Enhancements:** diff --git a/minimum-constraints.txt b/minimum-constraints.txt index 7ad09a5..d4ecbdf 100644 --- a/minimum-constraints.txt +++ b/minimum-constraints.txt @@ -18,8 +18,8 @@ pip==23.3; python_version >= '3.7' # setuptools 59.7.0 removed support for py36 setuptools==59.6.0; python_version == '3.6' -setuptools==65.5.1; python_version >= '3.7' and python_version <= '3.11' -setuptools==66.1.0; python_version >= '3.12' +setuptools==65.5.1; python_version == '3.7' +setuptools==70.0.0; python_version >= '3.8' wheel==0.33.5; python_version == '3.6' wheel==0.38.1; python_version >= '3.7' @@ -88,6 +88,7 @@ pydantic==1.10.13; python_version >= '3.7' typer==0.12.0; python_version >= '3.7' typer-cli==0.12.0; python_version >= '3.7' typer-slim==0.12.0; python_version >= '3.7' +psutil==6.0.0; python_version >= '3.7' # PyYAML is pulled in by dparse PyYAML==5.3.1 @@ -185,7 +186,7 @@ alabaster==0.7.9 appdirs==1.4.4 attrs==19.2.0 bleach==3.3.0 -certifi==2023.07.22 +certifi==2024.7.4 chardet==3.0.3 distlib==0.3.7 docopt==0.6.1 @@ -226,4 +227,5 @@ urllib3==1.26.19 wcwidth==0.1.7 webencodings==0.5.1 widgetsnbextension==1.2.6 -zipp==1.2.0 +zipp==3.6.0; python_version <= '3.7' +zipp==3.9.1; python_version >= '3.8'