Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Fix security issues reported by GitHub on Anchore integration #592

Merged
merged 1 commit into from May 13, 2019

Conversation

Projects
None yet
3 participants
@nestorsalceda
Copy link
Member

commented May 3, 2019

This PR updates the dependencies of the Anchore integration. This will fix some security issues found by GitHub.

],
"index": "pypi",
"version": "==2.19.1"
"version": "==2.21.0"

This comment has been minimized.

Copy link
@leodido

leodido May 3, 2019

Member

✔️

],
"version": "==1.23"
"version": "==1.24.3"

This comment has been minimized.

Copy link
@leodido

leodido May 3, 2019

Member

✔️

@leodido

leodido approved these changes May 3, 2019

Copy link
Member

left a comment

LGTM.

Reviewed urllib3 and requests versions. They're ok.

Not sure about the need to also upgrade the other dependencies' versions BTW.
Will look more into in the coming days (as soon I gain more knowledge about the code base).

Thanks 👍

@mfdii mfdii merged commit 52329f8 into dev May 13, 2019

5 checks passed

Build Build Successful
Details
Run tests All tests passed
Details
Travis CI - Branch Build Passed
Details
Travis CI - Pull Request Build Passed
Details
continuous-integration/jenkins/branch This commit looks good
Details
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
You can’t perform that action at this time.