Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We鈥檒l occasionally send you account related emails.

Already on GitHub? Sign in to your account

馃搶 Upgrade pydantic pin, to handle security vulnerability CVE-2021-29510 #3213

Merged
merged 1 commit into from
May 11, 2021

Conversation

tiangolo
Copy link
Owner

@tiangolo tiangolo commented May 11, 2021

馃搶 Upgrade pydantic pin, to handle security vulnerability CVE-2021-29510

Ref: GHSA-5jqp-qgf6-3pvh

@tiangolo tiangolo changed the title 馃搶 Upgrade pydantic pin, to handle CVE-2021-29510 馃搶 Upgrade pydantic pin, to handle security vulnerability CVE-2021-29510 May 11, 2021
@codecov
Copy link

codecov bot commented May 11, 2021

Codecov Report

Merging #3213 (314ed90) into master (b890bd1) will not change coverage.
The diff coverage is n/a.

Impacted file tree graph

@@            Coverage Diff            @@
##            master     #3213   +/-   ##
=========================================
  Coverage   100.00%   100.00%           
=========================================
  Files          246       246           
  Lines         7556      7556           
=========================================
  Hits          7556      7556           

Continue to review full report at Codecov.

Legend - Click here to learn more
螖 = absolute <relative> (impact), 酶 = not affected, ? = missing data
Powered by Codecov. Last update b890bd1...314ed90. Read the comment docs.

@github-actions github-actions bot temporarily deployed to commit May 11, 2021 21:11 Inactive
@github-actions
Copy link
Contributor

馃摑 Docs preview for commit 314ed90 at: https://609af26111134420e98fd94c--fastapi.netlify.app

@github-actions
Copy link
Contributor

馃摑 Docs preview for commit 314ed90 at: https://609af266ce17ee26ba09ce42--fastapi.netlify.app

@github-actions
Copy link
Contributor

馃摑 Docs preview for commit 314ed90 at: https://609af339def6cf262ee78f2e--fastapi.netlify.app

@github-actions
Copy link
Contributor

@tiangolo tiangolo merged commit a629339 into master May 11, 2021
@tiangolo tiangolo deleted the upgrade-pydantic-pin branch May 11, 2021 21:17
carmocca added a commit to Lightning-AI/pytorch-lightning that referenced this pull request Apr 11, 2023
lantiga pushed a commit to Lightning-AI/pytorch-lightning that referenced this pull request Apr 12, 2023
* Update fastapi dependency pins

* Apply suggestions from code review

* Update test.txt

* Update requirements/app/base.txt

* Revert "Update requirements/app/base.txt"

This reverts commit 59918ff.

* cloud update

* Bad merge

* fastapi 0.69.0 which pins starlette 0.15.0

* pydantic/pydantic#1985

* Avoid CVE: tiangolo/fastapi#3213

* Strict trio

* Skip windows test

---------

Co-authored-by: Jirka Borovec <6035284+Borda@users.noreply.github.com>
Borda pushed a commit to Lightning-AI/pytorch-lightning that referenced this pull request Apr 24, 2023
* Update fastapi dependency pins

* Apply suggestions from code review

* Update test.txt

* Update requirements/app/base.txt

* Revert "Update requirements/app/base.txt"

This reverts commit 59918ff.

* cloud update

* Bad merge

* fastapi 0.69.0 which pins starlette 0.15.0

* pydantic/pydantic#1985

* Avoid CVE: tiangolo/fastapi#3213

* Strict trio

* Skip windows test

---------

Co-authored-by: Jirka Borovec <6035284+Borda@users.noreply.github.com>
(cherry picked from commit 04fb30b)
lantiga pushed a commit to Lightning-AI/pytorch-lightning that referenced this pull request Apr 24, 2023
* Update fastapi dependency pins

* Apply suggestions from code review

* Update test.txt

* Update requirements/app/base.txt

* Revert "Update requirements/app/base.txt"

This reverts commit 59918ff.

* cloud update

* Bad merge

* fastapi 0.69.0 which pins starlette 0.15.0

* pydantic/pydantic#1985

* Avoid CVE: tiangolo/fastapi#3213

* Strict trio

* Skip windows test

---------

Co-authored-by: Jirka Borovec <6035284+Borda@users.noreply.github.com>
(cherry picked from commit 04fb30b)
Borda pushed a commit to Lightning-AI/pytorch-lightning that referenced this pull request Apr 24, 2023
* Update fastapi dependency pins

* Apply suggestions from code review

* Update test.txt

* Update requirements/app/base.txt

* Revert "Update requirements/app/base.txt"

This reverts commit 59918ff.

* cloud update

* Bad merge

* fastapi 0.69.0 which pins starlette 0.15.0

* pydantic/pydantic#1985

* Avoid CVE: tiangolo/fastapi#3213

* Strict trio

* Skip windows test

---------

Co-authored-by: Jirka Borovec <6035284+Borda@users.noreply.github.com>
(cherry picked from commit 04fb30b)
Borda pushed a commit to Lightning-AI/pytorch-lightning that referenced this pull request Apr 24, 2023
* Update fastapi dependency pins

* Apply suggestions from code review

* Update test.txt

* Update requirements/app/base.txt

* Revert "Update requirements/app/base.txt"

This reverts commit 59918ff.

* cloud update

* Bad merge

* fastapi 0.69.0 which pins starlette 0.15.0

* pydantic/pydantic#1985

* Avoid CVE: tiangolo/fastapi#3213

* Strict trio

* Skip windows test

---------

Co-authored-by: Jirka Borovec <6035284+Borda@users.noreply.github.com>
(cherry picked from commit 04fb30b)
lantiga pushed a commit to Lightning-AI/pytorch-lightning that referenced this pull request Apr 26, 2023
* Update fastapi dependency pins

* Apply suggestions from code review

* Update test.txt

* Update requirements/app/base.txt

* Revert "Update requirements/app/base.txt"

This reverts commit 59918ff.

* cloud update

* Bad merge

* fastapi 0.69.0 which pins starlette 0.15.0

* pydantic/pydantic#1985

* Avoid CVE: tiangolo/fastapi#3213

* Strict trio

* Skip windows test

---------

Co-authored-by: Jirka Borovec <6035284+Borda@users.noreply.github.com>
(cherry picked from commit 04fb30b)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

None yet

1 participant