From 24f4abf748ce15d3f6d5ab17bf8e7d834fb1e764 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 16 Feb 2024 21:36:12 +0000 Subject: [PATCH] Bump the pip group across 1 directories with 11 updates Bumps the pip group with 11 updates in the /api directory: | Package | From | To | | --- | --- | --- | | [certifi](https://github.com/certifi/python-certifi) | `2020.6.20` | `2023.7.22` | | [cryptography](https://github.com/pyca/cryptography) | `3.2.1` | `42.0.2` | | [ecdsa](https://github.com/tlsfuzzer/python-ecdsa) | `0.15` | `0.18.0` | | [future](https://github.com/PythonCharmers/python-future) | `0.18.2` | `0.18.3` | | [jinja2](https://github.com/pallets/jinja) | `2.11.2` | `3.1.3` | | [jsonpickle](https://github.com/jsonpickle/jsonpickle) | `1.4.1` | `1.5.0` | | [py](https://github.com/pytest-dev/py) | `1.9.0` | `1.11.0` | | [requests](https://github.com/psf/requests) | `2.24.0` | `2.31.0` | | [rsa](https://github.com/sybrenstuvel/python-rsa) | `4.6` | `4.7` | | [urllib3](https://github.com/urllib3/urllib3) | `1.25.10` | `1.26.18` | | [werkzeug](https://github.com/pallets/werkzeug) | `1.0.1` | `2.3.8` | Updates `certifi` from 2020.6.20 to 2023.7.22 - [Commits](https://github.com/certifi/python-certifi/compare/2020.06.20...2023.07.22) Updates `cryptography` from 3.2.1 to 42.0.2 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/3.2.1...42.0.2) Updates `ecdsa` from 0.15 to 0.18.0 - [Release notes](https://github.com/tlsfuzzer/python-ecdsa/releases) - [Changelog](https://github.com/tlsfuzzer/python-ecdsa/blob/master/NEWS) - [Commits](https://github.com/tlsfuzzer/python-ecdsa/compare/python-ecdsa-0.15...python-ecdsa-0.18.0) Updates `future` from 0.18.2 to 0.18.3 - [Release notes](https://github.com/PythonCharmers/python-future/releases) - [Changelog](https://github.com/PythonCharmers/python-future/blob/master/docs/changelog.rst) - [Commits](https://github.com/PythonCharmers/python-future/compare/v0.18.2...v0.18.3) Updates `jinja2` from 2.11.2 to 3.1.3 - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/jinja/compare/2.11.2...3.1.3) Updates `jsonpickle` from 1.4.1 to 1.5.0 - [Changelog](https://github.com/jsonpickle/jsonpickle/blob/main/CHANGES.rst) - [Commits](https://github.com/jsonpickle/jsonpickle/compare/v1.4.1...v1.5.0) Updates `py` from 1.9.0 to 1.11.0 - [Changelog](https://github.com/pytest-dev/py/blob/master/CHANGELOG.rst) - [Commits](https://github.com/pytest-dev/py/compare/1.9.0...1.11.0) Updates `requests` from 2.24.0 to 2.31.0 - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.24.0...v2.31.0) Updates `rsa` from 4.6 to 4.7 - [Changelog](https://github.com/sybrenstuvel/python-rsa/blob/main/CHANGELOG.md) - [Commits](https://github.com/sybrenstuvel/python-rsa/compare/version-4.6...version-4.7) Updates `urllib3` from 1.25.10 to 1.26.18 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/1.25.10...1.26.18) Updates `werkzeug` from 1.0.1 to 2.3.8 - [Release notes](https://github.com/pallets/werkzeug/releases) - [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/werkzeug/compare/1.0.1...2.3.8) --- updated-dependencies: - dependency-name: certifi dependency-type: direct:development dependency-group: pip-security-group - dependency-name: cryptography dependency-type: direct:development dependency-group: pip-security-group - dependency-name: ecdsa dependency-type: direct:development dependency-group: pip-security-group - dependency-name: future dependency-type: direct:development dependency-group: pip-security-group - dependency-name: jinja2 dependency-type: direct:development dependency-group: pip-security-group - dependency-name: jsonpickle dependency-type: direct:development dependency-group: pip-security-group - dependency-name: py dependency-type: direct:development dependency-group: pip-security-group - dependency-name: requests dependency-type: direct:development dependency-group: pip-security-group - dependency-name: rsa dependency-type: direct:development dependency-group: pip-security-group - dependency-name: urllib3 dependency-type: direct:development dependency-group: pip-security-group - dependency-name: werkzeug dependency-type: direct:development dependency-group: pip-security-group ... Signed-off-by: dependabot[bot] --- api/requirements-dev.txt | 22 +++++++++++----------- 1 file changed, 11 insertions(+), 11 deletions(-) diff --git a/api/requirements-dev.txt b/api/requirements-dev.txt index 6a6ade1..9ae1f32 100644 --- a/api/requirements-dev.txt +++ b/api/requirements-dev.txt @@ -6,25 +6,25 @@ boto==2.49.0 boto3==1.15.16 boto3-stubs==1.14.38.0 botocore==1.17.43 -certifi==2020.6.20 +certifi==2023.7.22 cffi==1.14.2 cfn-lint==0.35.1 chardet==3.0.4 colorama==0.4.3 -cryptography==3.2.1 +cryptography==42.0.2 decorator==4.4.2 docker==4.2.2 docutils==0.16 -ecdsa==0.15 -future==0.18.2 +ecdsa==0.18.0 +future==0.18.3 idna==2.10 importlib-metadata==1.7.0 iniconfig==1.0.1 -Jinja2==2.11.2 +Jinja2==3.1.3 jmespath==0.10.0 jsondiff==1.2.0 jsonpatch==1.26 -jsonpickle==1.4.1 +jsonpickle==1.5.0 jsonpointer==2.0 jsonschema==3.2.0 junit-xml==1.9 @@ -35,7 +35,7 @@ moto==1.3.14 networkx==2.4 packaging==20.4 pluggy==0.13.1 -py==1.9.0 +py==1.11.0 pyasn1==0.4.8 pycparser==2.20 pyparsing==2.4.7 @@ -45,16 +45,16 @@ python-dateutil==2.8.1 python-jose==3.2.0 pytz==2020.1 PyYAML==5.3.1 -requests==2.24.0 +requests==2.31.0 responses==0.12.0 -rsa==4.6 +rsa==4.7 s3transfer==0.3.3 six==1.15.0 sshpubkeys==3.1.0 toml==0.10.1 -urllib3==1.25.10 +urllib3==1.26.18 websocket-client==0.57.0 -Werkzeug==1.0.1 +Werkzeug==2.3.8 wrapt==1.12.1 xmltodict==0.12.0 zipp==3.1.0