security: CVE-2023-32681: bump requests@2.31.0

- Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of Proxy-Authorization headers to destination servers when following HTTPS redirects. Details at [Github Advisory](https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q) Signed-off-by: Hiroshi Miura <miurahr@linux.com>
2025-12-17 04:34:37 +03:00 · 2023-11-03 12:12:22 +09:00
parent 0110f2f69a
commit 349a75f67b
1 changed files with 1 additions and 1 deletions
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -27,7 +27,7 @@ dependencies = [
    "humanize",
    "patch>=1.16",
    "py7zr>=0.20.6",
-    "requests>2.20.0",
+    "requests>=2.31.0",
    "semantic-version",
    "texttable",
 ]