addace21b6
Bumps urllib3 from 1.25.8 to 1.26.5 to resolve two dependabot warnings CRLF injection (Moderate) urllib3 (pip) · dev-support/git-jira-release-audit/requirements.txt Catastrophic backtracking in URL authority parser when passed URL containing many @ characters (High) urllib3 (pip) · dev-support/git-jira-release-audit/requirements.txt Bumps cryptography from 2.8 to 3.3.2 to resolve one dependabot warning RSA decryption vulnerable to Bleichenbacher timing vulnerability (Moderate) cryptography (pip) · dev-support/git-jira-release-audit/requirements.txt Signed-off-by: Duo Zhang <zhangduo@apache.org> Signed-off-by: Nick Dimiduk <ndimiduk@apache.org> Signed-off-by: Wei-Chiu Chuang <weichiu@apache.org>
40 lines
1.1 KiB
Plaintext
40 lines
1.1 KiB
Plaintext
#
|
|
# Licensed to the Apache Software Foundation (ASF) under one
|
|
# or more contributor license agreements. See the NOTICE file
|
|
# distributed with this work for additional information
|
|
# regarding copyright ownership. The ASF licenses this file
|
|
# to you under the Apache License, Version 2.0 (the
|
|
# "License"); you may not use this file except in compliance
|
|
# with the License. You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
#
|
|
blessed==1.17.0
|
|
certifi==2019.11.28
|
|
cffi==1.13.2
|
|
chardet==3.0.4
|
|
cryptography=3.3.2
|
|
defusedxml==0.6.0
|
|
enlighten==1.4.0
|
|
gitdb2==2.0.6
|
|
GitPython==3.0.5
|
|
idna==2.8
|
|
jira==2.0.0
|
|
oauthlib==3.1.0
|
|
pbr==5.4.4
|
|
pycparser==2.19
|
|
PyJWT==1.7.1
|
|
requests==2.22.0
|
|
requests-oauthlib==1.3.0
|
|
requests-toolbelt==0.9.1
|
|
six==1.14.0
|
|
smmap2==2.0.5
|
|
urllib3==1.26.5
|
|
wcwidth==0.1.8
|