From 61a95b7d461fd779f5f38b436b434ba0f59ac74d Mon Sep 17 00:00:00 2001 From: Andreas Maier Date: Wed, 5 Jul 2023 09:16:44 +0200 Subject: [PATCH] Fixed safety issues 7/2023 Signed-off-by: Andreas Maier --- .safety-policy.yml | 2 ++ dev-requirements.txt | 3 ++- docs/source/release_notes.rst | 3 +++ minimum-constraints.txt | 3 ++- 4 files changed, 9 insertions(+), 2 deletions(-) diff --git a/.safety-policy.yml b/.safety-policy.yml index 92313d3d0..ea7a1ec47 100644 --- a/.safety-policy.yml +++ b/.safety-policy.yml @@ -85,6 +85,8 @@ security: reason: Not yet fixed in any ansible version, but need to support ansible 2.9 58755: reason: Fixed requests version 2.31.0 requires Python>=3.7 and is used there + 58910: + reason: Fixed pygments version 2.15.0 requires Python>=3.7 and is used there # Continue with exit code 0 when vulnerabilities are found. continue-on-vulnerability-error: False diff --git a/dev-requirements.txt b/dev-requirements.txt index 4989e32fb..113c3df89 100644 --- a/dev-requirements.txt +++ b/dev-requirements.txt @@ -99,7 +99,8 @@ GitPython>=2.1.15; python_version == '3.6' GitPython>=3.1.30; python_version >= '3.7' sphinxcontrib-fulltoc>=1.2.0; python_version >= '3.6' sphinxcontrib-websupport>=1.1.2; python_version >= '3.6' -Pygments>=2.7.4; python_version >= '3.6' +Pygments>=2.7.4; python_version == '3.6' +Pygments>=2.15.0; python_version >= '3.7' # Babel 2.7.0 fixes an ImportError for MutableMapping which starts failing on Python 3.10 # Babel 2.9.1 fixes safety issue 42203 Babel>=2.9.1 diff --git a/docs/source/release_notes.rst b/docs/source/release_notes.rst index d41f58a34..737bea089 100644 --- a/docs/source/release_notes.rst +++ b/docs/source/release_notes.rst @@ -33,6 +33,9 @@ Availability: `AutomationHub`_, `Galaxy`_, `GitHub`_ **Bug fixes:** +* Addressed safety issues from 7/2023, by increasing increasing packages only + needed for development. + **Enhancements:** **Cleanup:** diff --git a/minimum-constraints.txt b/minimum-constraints.txt index fcaef9292..a6b6d9208 100644 --- a/minimum-constraints.txt +++ b/minimum-constraints.txt @@ -215,7 +215,8 @@ GitPython==2.1.15; python_version == '3.6' GitPython==3.1.30; python_version >= '3.7' sphinxcontrib-fulltoc==1.2.0; python_version >= '3.6' sphinxcontrib-websupport==1.1.2; python_version >= '3.6' -Pygments==2.7.4; python_version >= '3.6' +Pygments==2.7.4; python_version == '3.6' +Pygments==2.15.0; python_version >= '3.7' Babel==2.9.1; python_version >= '3.6' # sphinx-versions: Retrieved from git repo in dev-requirements.txt for python_version >= '3.6' # ansible-doc-extractor and it's dependent theme for docs generation (no imports, invoked via script):