From 2758ff1f87af5abe2da3ab909d8121ec899e7801 Mon Sep 17 00:00:00 2001 From: Rajiv Bakulesh Shah Date: Thu, 14 Dec 2023 11:15:30 -0800 Subject: [PATCH] Upgrade requirements (#721) * Upgrade requirements * Only run Safety on packages in requirements.txt https://github.com/pyupio/safety?tab=readme-ov-file#configuring-the-target-of-the-scan Hopefully, this gets around this error which I can't reproduce locally: https://github.com/brainix/pottery/actions/runs/7213342550/job/19653111668 --- .github/workflows/python-package.yml | 2 +- requirements.txt | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml index 51f7d6b4..7003a331 100644 --- a/.github/workflows/python-package.yml +++ b/.github/workflows/python-package.yml @@ -48,4 +48,4 @@ jobs: - name: Check for security vulnerabilities with Bandit and Safety run: | bandit --recursive pottery - safety check + safety check --file requirements.txt diff --git a/requirements.txt b/requirements.txt index 60edbf8d..6c2e0993 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,4 +1,4 @@ -bandit==1.7.5 +bandit==1.7.6 certifi==2023.11.17 cffi==1.16.0 charset-normalizer==3.3.2 @@ -14,7 +14,7 @@ hiredis==2.2.3 idna==3.6 importlib-metadata==6.8.0 iniconfig==2.0.0 -isort==5.12.0 +isort==5.13.2 jaraco.classes==3.3.0 keyring==24.3.0 markdown-it-py==3.0.0 @@ -53,7 +53,7 @@ stevedore==5.1.0 twine==4.0.2 types-pyOpenSSL==23.3.0.0 types-redis==4.6.0.11 -typing_extensions==4.8.0 +typing_extensions==4.9.0 urllib3==2.1.0 uvloop==0.19.0 wheel==0.42.0