Skip to content

Commit

Permalink
dependencies: fix security issues
Browse files Browse the repository at this point in the history 
* Forces jinja2 > 2.11.2.
* Forces cryptography > 3.3.1.

Co-Authored-by: Johnny Mariéthoz <[email protected]>
  • Loading branch information
@jma
jma committed Mar 1, 2021
1 parent b7d984d commit 7e73a65
Show file tree
Hide file tree
Showing 2 changed files with 28 additions and 24 deletions.
49 changes: 26 additions & 23 deletions poetry.lock
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

3 changes: 2 additions & 1 deletion pyproject.toml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -75,9 +75,10 @@ python-dotenv = "^0.13.0"
invenio-sip2 = {git = "https://github.com/inveniosoftware-contrib/invenio-sip2.git", optional = true}
flask-cors = ">3.0.8"
celery = ">=5.0.0"
cryptography = ">3.2"
cryptography = ">3.3.1"
freezegun = "^1.1.0"
lazyreader = ">1.0.0"
jinja2 = ">2.11.2"

[tool.poetry.dev-dependencies]
## Python packages development dependencies (order matters)
Expand Down

0 comments on commit 7e73a65

Please sign in to comment.