Skip to content

chore(deps): add and upgrade tornado to resolve high vulnerability #1206

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
Pouyanpi merged 1 commit into from
May 28, 2025
Merged

chore(deps): add and upgrade tornado to resolve high vulnerability #1206

Pouyanpi merged 1 commit into from
May 28, 2025

Conversation

@Pouyanpi
Copy link
Collaborator

@Pouyanpi Pouyanpi commented May 26, 2025

Merging this pull request will resolve a high severity Dependabot alert on tornado.

Dependency updates:

  • Updated the Python version compatibility for streamlit to >=3.9,!=3.9.7,<3.14
  • Added tornado to eval as it is streamlit dependency, cap it above 0.6.5

@Pouyanpi Pouyanpi added this to the v0.14.0 milestone May 26, 2025
@Pouyanpi Pouyanpi self-assigned this May 26, 2025
@Pouyanpi Pouyanpi added the dependencies Pull requests that update a dependency file label May 26, 2025
@Pouyanpi Pouyanpi mentioned this pull request May 26, 2025
Closed
@codecov-commenter
Copy link

codecov-commenter commented May 26, 2025

Codecov Report

All modified and coverable lines are covered by tests ✅

Project coverage is 68.65%. Comparing base (07422c1) to head (dac2b03).

Additional details and impacted files 
@@           Coverage Diff            @@
##           develop    #1206   +/-   ##
========================================
  Coverage    68.65%   68.65%           
========================================
  Files          161      161           
  Lines        15978    15978           
========================================
  Hits         10969    10969           
  Misses        5009     5009
Flag Coverage Δ
python 68.65% <ø> (ø)

Flags with carried forward coverage won't be shown. Click here to find out more.

🚀 New features to boost your workflow:
  • ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
  • 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.

@Pouyanpi Pouyanpi requested review from cparisien and tgasser-nv May 26, 2025 15:23
@Pouyanpi Pouyanpi changed the title chore(deps): add and upgrade tornado resolve high vulnerability chore(deps): add and upgrade tornado to resolve high vulnerability May 26, 2025
@Pouyanpi Pouyanpi merged commit 95525ad into develop May 28, 2025
39 checks passed
@Pouyanpi Pouyanpi deleted the chore/update-tornado branch May 28, 2025 16:42
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cparisien cparisien cparisien approved these changes

@tgasser-nv tgasser-nv Awaiting requested review from tgasser-nv

Assignees

@Pouyanpi Pouyanpi

Labels

dependencies Pull requests that update a dependency file

Projects

None yet

Milestone

v0.14.0

Development

Successfully merging this pull request may close these issues.

4 participants

@Pouyanpi @codecov-commenter @cparisien