Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Package Update for Vulnerabilities #472

Merged
merged 1 commit into from
Oct 17, 2024
Merged

Package Update for Vulnerabilities #472

merged 1 commit into from
Oct 17, 2024

Conversation

skalupa
Copy link
Collaborator

@skalupa skalupa commented Sep 5, 2024

Describe the change
This PR updates all dependant packages of the project in order to address vulnerability issues, most notably for the certifi, requests, zipp, and setuptools dependencies which had open issues created by dependabot. Additionally, added in "package-mode = false" reference in pyproject.toml file in order to address inconsistency in nightly build which appears to be caused by the default python packaging in poetry builds which is not require to build this project. Finally, updated the changelog with recent changes to the project.

Describe testing procedures
Tested with local build of the project and local build of Strelka UI.

Sample output
N/A

Checklist

  • My code follows the style guidelines of this project
  • I have performed a self-review of and tested my code
  • I have commented my code, particularly in hard-to-understand areas
  • I have made corresponding changes to the documentation
  • My changes generate no new warnings

@skalupa skalupa merged commit 1870ab9 into master Oct 17, 2024
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

1 participant