Bump bottle from v0.12.13 to v0.12.20

Addresses two CVEs flagged by dependabot: * Critical: CVE-2022-31799 * Moderate: CVE-2020-28473
thatfloflo · Dec 9, 2022 · 4d5e1d8 · 4d5e1d8
1 parent bdfaed2
commit 4d5e1d8
Show file tree

Hide file tree

Showing 3 changed files with 5 additions and 2 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,8 @@
 # Change log
 
+### v0.15.1
+* Bump bottle dependency from 0.12.13 to 0.12.20 to address the critical CVE-2022-31799 and moderate CVE-2020-28473.
+
 ### v0.15.0
 * Add `shutdown_delay` as a `start()` function parameter ([#529](https://github.com/python-eel/Eel/pull/529))
 

diff --git a/requirements.txt b/requirements.txt
@@ -1,4 +1,4 @@
-bottle==0.12.13
+bottle==0.12.20
 bottle-websocket==0.2.9
 gevent==1.3.6
 gevent-websocket==0.10.1

diff --git a/setup.py b/setup.py
@@ -6,7 +6,7 @@
 
 setup(
     name='Eel',
-    version='0.15.0',
+    version='0.15.1',
     author='Python Eel Organisation',
     author_email='python-eel@protonmail.com',
     url='https://github.com/python-eel/Eel',