From b83d7012b85bdfa5d715e5444cf4a2c237cdd3b6 Mon Sep 17 00:00:00 2001 From: Andreas Maier Date: Sun, 18 Aug 2024 08:15:27 +0200 Subject: [PATCH] Addressed safety issues (#647) Signed-off-by: Andreas Maier --- .safety-policy-install.yml | 2 ++ base-requirements.txt | 10 ++++------ docs/changes.rst | 2 +- minimum-constraints-install.txt | 4 ++-- 4 files changed, 9 insertions(+), 9 deletions(-) diff --git a/.safety-policy-install.yml b/.safety-policy-install.yml index dc3ff269..10ea8d0f 100644 --- a/.safety-policy-install.yml +++ b/.safety-policy-install.yml @@ -48,6 +48,8 @@ security: reason: Fixed idna version 3.7 requires requests>=2.26.0 which requires Python>=3.6 and is used there 71064: reason: Fixed requests version 2.32.2 requires Python>=3.8 and is used there + 72236: + reason: Fixed setuptools version 70.0.0 requires Python>=3.8 and is used there # Continue with exit code 0 when vulnerabilities are found. continue-on-vulnerability-error: False diff --git a/base-requirements.txt b/base-requirements.txt index 77209f7e..421098e4 100644 --- a/base-requirements.txt +++ b/base-requirements.txt @@ -4,10 +4,8 @@ # Base dependencies (must be consistent with minimum-constraints.txt) pip>=21.2.4 -setuptools>=39.0.1; python_version == '3.6' -setuptools>=40.6.0; python_version == '3.7' -setuptools>=41.5.0; python_version >= '3.8' and python_version <= '3.9' -setuptools>=49.0.0; python_version >= '3.10' +setuptools>=59.6.0; python_version == '3.6' +setuptools>=65.5.1; python_version == '3.7' +setuptools>=70.0.0; python_version >= '3.8' wheel>=0.30.0; python_version == '3.6' -wheel>=0.32.0; python_version == '3.7' -wheel>=0.33.5; python_version >= '3.8' +wheel>=0.38.1; python_version >= '3.7' diff --git a/docs/changes.rst b/docs/changes.rst index ef009157..042a9017 100644 --- a/docs/changes.rst +++ b/docs/changes.rst @@ -31,7 +31,7 @@ Released: not yet **Bug fixes:** -* Addressed safety issues up to 2024-08-16. +* Addressed safety issues up to 2024-08-18. **Enhancements:** diff --git a/minimum-constraints-install.txt b/minimum-constraints-install.txt index e9820c23..44746b9c 100644 --- a/minimum-constraints-install.txt +++ b/minimum-constraints-install.txt @@ -23,8 +23,8 @@ pip==23.3; python_version >= '3.7' # setuptools 59.7.0 removed support for py36 setuptools==59.6.0; python_version == '3.6' -setuptools==65.5.1; python_version >= '3.7' and python_version <= '3.11' -setuptools==66.1.0; python_version >= '3.12' +setuptools==65.5.1; python_version == '3.7' +setuptools==70.0.0; python_version >= '3.8' wheel==0.30.0; python_version == '3.6' wheel==0.38.1; python_version >= '3.7'