Mirrors/aqtinstall
1
0
Fork 0
mirror of https://github.com/miurahr/aqtinstall.git synced 2025-12-17 20:54:38 +03:00
Code Issues Actions Packages Projects Releases Wiki Activity

security: CVE-2023-32681: bump requests@2.31.0

Browse Source 
- Versions of Requests between v2.3.0 and v2.30.0 are vulnerable to potential forwarding of Proxy-Authorization headers to destination servers when following HTTPS redirects.

Details at [Github Advisory](https://github.com/psf/requests/security/advisories/GHSA-j8r2-6x86-q33q)

Signed-off-by: Hiroshi Miura <miurahr@linux.com>
This commit is contained in:
Hiroshi Miura
2023-11-03 12:12:22 +09:00
parent 0110f2f69a
commit 349a75f67b
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
pyproject.toml
View File

@@ -27,7 +27,7 @@ dependencies = [
"humanize", "humanize",
"patch>=1.16", "patch>=1.16",
"py7zr>=0.20.6", "py7zr>=0.20.6",
"requests>2.20.0", "requests>=2.31.0",
"semantic-version", "semantic-version",
"texttable", "texttable",
] ]