From c139580af0079c16f63e1e7ec999c78c17f58607 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Thu, 19 Oct 2023 10:33:02 -0400 Subject: [PATCH] Bump urllib3 from 1.26.17 to 1.26.18 in /src (#257) * Bump urllib3 from 1.26.17 to 1.26.18 in /src Bumps [urllib3](https://github.com/urllib3/urllib3) from 1.26.17 to 1.26.18. - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/1.26.17...1.26.18) --- updated-dependencies: - dependency-name: urllib3 dependency-type: direct:production ... Signed-off-by: dependabot[bot] * Bump minimum urllib3 version in requirements.in * pip-compile requirements --------- Signed-off-by: dependabot[bot] Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: Anthony Romaniello --- src/requirements-dev.txt | 10 ++++++---- src/requirements.in | 2 +- src/requirements.txt | 6 +++--- 3 files changed, 10 insertions(+), 8 deletions(-) diff --git a/src/requirements-dev.txt b/src/requirements-dev.txt index 6a5e1649..6c7057c2 100644 --- a/src/requirements-dev.txt +++ b/src/requirements-dev.txt @@ -69,7 +69,9 @@ coreschema==0.0.4 # coreapi # drf-yasg coverage[toml]==7.2.1 - # via pytest-cov + # via + # coverage + # pytest-cov cryptography==41.0.4 # via -r requirements.txt defusedxml==0.7.1 @@ -319,11 +321,11 @@ scipy==1.10.1 # via # -r requirements.txt # scos-actions -scos_actions @ git+https://github.com/NTIA/scos-actions@6.3.3 +scos-actions @ git+https://github.com/NTIA/scos-actions@6.3.3 # via # -r requirements.txt # scos-tekrsa -scos_tekrsa @ git+https://github.com/NTIA/scos-tekrsa@3.1.3 +scos-tekrsa @ git+https://github.com/NTIA/scos-tekrsa@3.1.3 # via -r requirements.txt sigmf @ git+https://github.com/NTIA/SigMF@multi-recording-archive # via @@ -364,7 +366,7 @@ uritemplate==4.1.1 # -r requirements.txt # coreapi # drf-yasg -urllib3==1.26.17 +urllib3==1.26.18 # via # -r requirements.txt # requests diff --git a/src/requirements.in b/src/requirements.in index c3f2d52f..71b77234 100644 --- a/src/requirements.in +++ b/src/requirements.in @@ -20,4 +20,4 @@ scos_tekrsa @ git+https://github.com/NTIA/scos-tekrsa@3.1.3 # higher minimum patch version than the dependencies which require them. # This is done to ensure the inclusion of specific security patches. pyyaml>=5.4.0 # CVE-2020-14343 -urllib3>=1.26.17 # CVE-2023-43804 +urllib3>=1.26.18 # CVE-2023-45803 diff --git a/src/requirements.txt b/src/requirements.txt index 4bebe275..7c40f298 100644 --- a/src/requirements.txt +++ b/src/requirements.txt @@ -149,11 +149,11 @@ ruamel-yaml-clib==0.2.8 # via ruamel-yaml scipy==1.10.1 # via scos-actions -scos_actions @ git+https://github.com/NTIA/scos-actions@6.3.3 +scos-actions @ git+https://github.com/NTIA/scos-actions@6.3.3 # via # -r requirements.in # scos-tekrsa -scos_tekrsa @ git+https://github.com/NTIA/scos-tekrsa@3.1.3 +scos-tekrsa @ git+https://github.com/NTIA/scos-tekrsa@3.1.3 # via -r requirements.in sigmf @ git+https://github.com/NTIA/SigMF@multi-recording-archive # via scos-actions @@ -172,7 +172,7 @@ uritemplate==4.1.1 # via # coreapi # drf-yasg -urllib3==1.26.17 +urllib3==1.26.18 # via # -r requirements.in # requests