Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update dependent numpy version from 1.21.4 -> 1.26.4 #975

Open
Shubham11Gupta opened this issue Apr 26, 2024 · 2 comments
Open

Update dependent numpy version from 1.21.4 -> 1.26.4 #975

Shubham11Gupta opened this issue Apr 26, 2024 · 2 comments

Comments

@Shubham11Gupta
Copy link

Numpy version 1.21.4 is giving out medium level vulnerabilities while the whitesource testing.
In my code i am using opencv-python-headless:4.9.0.80 as i only need it in the backend code. and this is giving out the vulnerability during the github whitesource testing.
Can we get it working with the latest LTS version i.e. 1.26.4.

@asmorkalov
Copy link
Collaborator

OpenCV defines minimal version of the dependencies. You can mention newer version of numpy in your requirements.txt and it'll work. I'll take a look if it's reasonable to raise minimal versions for the next release.

@Shubham11Gupta
Copy link
Author

the issue i am facing is during the white source testing of the code in the github right before merging, it is showing vulnerability in numpy 1.21.4 and asking for update, the opencv-python-headless is working absolutely fine with that version of numpy but it is the vulnerability with the version which is causing problem, please look into it.
Thank you

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants