Skip to content

Commit

Permalink
feat: update requests 2.31.0 => 2.32.2 to fix CVE-2024-35195
Browse files Browse the repository at this point in the history
  • Loading branch information
@tngraf
tngraf committed May 25, 2024
1 parent 4803f87 commit a2f5e6c
Show file tree
Hide file tree
Showing 3 changed files with 9 additions and 5 deletions.
4 changes: 4 additions & 0 deletions ChangeLog.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,6 +5,10 @@

# SW360 Base Library for Python

## NEXT

* update requests 2.31.0 => 2.32.2 to fix CVE-2024-35195.

## V1.5.0

* when using CaPyCLI in a CI pipeline, connection problems to the SW360 server (5xx) cause
Expand Down
8 changes: 4 additions & 4 deletions poetry.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

2 changes: 1 addition & 1 deletion pyproject.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,7 +24,7 @@ classifiers = [

[tool.poetry.dependencies]
python = "^3.8" # because 3.8 is the minimum requirement for isort, mypy
requests = "^2.31.0" # fix CVE-2023-32681
requests = "^2.32.2" # fix CVE-2024-35195

[tool.poetry.group.dev.dependencies]
colorama = "^0.4.6"
Expand Down

0 comments on commit a2f5e6c

Please sign in to comment.