Skip to content

requirements*.txt: Updating Python version and dependencies. #59

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
cemiarni merged 3 commits into from
Jan 16, 2026
Merged

requirements*.txt: Updating Python version and dependencies. #59

cemiarni merged 3 commits into from
Jan 16, 2026
+34 −36

Conversation

@mkertai
Copy link
Collaborator

@mkertai mkertai commented Jan 15, 2026

Regenerate requirements with Python 3.10 to fix urllib3 vulnerabilies (CVE-2025-66471, CVE-2025-66418).

Checks needed to see if the Python version or the dependencies' upgrade does not mess up anything.

Tests/checks:
make check: success
make release-test: success

Reference: azure #496574
Reference: azure #649042

@mkertai mkertai force-pushed the WIP/update-packages-for-vulnerability-fix branch from 53d89bd to 0fc6402 Compare January 15, 2026 14:36
cemiarni
cemiarni requested changes Jan 15, 2026
View reviewed changes
Copy link
Collaborator

@cemiarni cemiarni left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please create a similar commit like this: 7e9c5ce

If you want the whole modification can be one commit, but change the commit message especially the first line to indicate the new python version requirement.

cemiarni
cemiarni requested changes Jan 15, 2026
View reviewed changes
.github/workflows/ci.yml Outdated
- ubuntu:noble
- debian:bullseye
- debian:bookworm
- debian:trixie
Copy link
Collaborator

@cemiarni cemiarni Jan 15, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

At this point we should omit trixie.

@mkertai
requirements*.txt: Updating Python version and dependencies.
156a15b 
Regenerate requirements with Python 3.10 to fix urllib3 vulnerabilies (CVE-2025-66471, CVE-2025-66418).

Checks needed to see if the Python version or the dependencies' upgrade does not mess up anything.



Reference: azure #496574
Reference: azure #649042
@mkertai
setup.py: require Python 3.10
5595ab0
@mkertai
ci.yml: drop Ubuntu focal and Debian bullseye from the testing matrix
34ef6de
@mkertai mkertai force-pushed the WIP/update-packages-for-vulnerability-fix branch from 0fc6402 to 34ef6de Compare January 15, 2026 16:06
@cemiarni cemiarni merged commit 4e5aff0 into master Jan 16, 2026
4 checks passed
@cemiarni cemiarni deleted the WIP/update-packages-for-vulnerability-fix branch January 16, 2026 12:01
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cemiarni cemiarni cemiarni approved these changes

@davedusa davedusa davedusa approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@mkertai @cemiarni @davedusa