From a19994f2eaecd053854faf1d3640e7a236a4e055 Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Fri, 13 Jun 2025 15:38:25 +0000 Subject: [PATCH] Bump the pip group across 1 directory with 9 updates Bumps the pip group with 9 updates in the / directory: | Package | From | To | | --- | --- | --- | | [cryptography](https://github.com/pyca/cryptography) | `3.4.8` | `44.0.1` | | [idna](https://github.com/kjd/idna) | `2.10` | `3.7` | | [jinja2](https://github.com/pallets/jinja) | `3.1.2` | `3.1.6` | | [lxml](https://github.com/lxml/lxml) | `4.9.3` | `5.4.0` | | [pillow](https://github.com/python-pillow/Pillow) | `9.4.0` | `10.3.0` | | [reportlab](https://www.reportlab.com/) | `3.6.12` | `3.6.13` | | [requests](https://github.com/psf/requests) | `2.25.1` | `2.32.4` | | [urllib3](https://github.com/urllib3/urllib3) | `1.26.5` | `1.26.19` | | [werkzeug](https://github.com/pallets/werkzeug) | `2.2.2` | `3.0.6` | Updates `cryptography` from 3.4.8 to 44.0.1 - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](https://github.com/pyca/cryptography/compare/3.4.8...44.0.1) Updates `idna` from 2.10 to 3.7 - [Release notes](https://github.com/kjd/idna/releases) - [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst) - [Commits](https://github.com/kjd/idna/compare/v2.10...v3.7) Updates `jinja2` from 3.1.2 to 3.1.6 - [Release notes](https://github.com/pallets/jinja/releases) - [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/jinja/compare/3.1.2...3.1.6) Updates `lxml` from 4.9.3 to 5.4.0 - [Release notes](https://github.com/lxml/lxml/releases) - [Changelog](https://github.com/lxml/lxml/blob/master/CHANGES.txt) - [Commits](https://github.com/lxml/lxml/compare/lxml-4.9.3...lxml-5.4.0) Updates `pillow` from 9.4.0 to 10.3.0 - [Release notes](https://github.com/python-pillow/Pillow/releases) - [Changelog](https://github.com/python-pillow/Pillow/blob/main/CHANGES.rst) - [Commits](https://github.com/python-pillow/Pillow/compare/9.4.0...10.3.0) Updates `reportlab` from 3.6.12 to 3.6.13 Updates `requests` from 2.25.1 to 2.32.4 - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.25.1...v2.32.4) Updates `urllib3` from 1.26.5 to 1.26.19 - [Release notes](https://github.com/urllib3/urllib3/releases) - [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst) - [Commits](https://github.com/urllib3/urllib3/compare/1.26.5...1.26.19) Updates `werkzeug` from 2.2.2 to 3.0.6 - [Release notes](https://github.com/pallets/werkzeug/releases) - [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst) - [Commits](https://github.com/pallets/werkzeug/compare/2.2.2...3.0.6) --- updated-dependencies: - dependency-name: cryptography dependency-version: 44.0.1 dependency-type: direct:production dependency-group: pip - dependency-name: idna dependency-version: '3.7' dependency-type: direct:production dependency-group: pip - dependency-name: jinja2 dependency-version: 3.1.6 dependency-type: direct:production dependency-group: pip - dependency-name: lxml dependency-version: 5.4.0 dependency-type: direct:production dependency-group: pip - dependency-name: pillow dependency-version: 10.3.0 dependency-type: direct:production dependency-group: pip - dependency-name: reportlab dependency-version: 3.6.13 dependency-type: direct:production dependency-group: pip - dependency-name: requests dependency-version: 2.32.4 dependency-type: direct:production dependency-group: pip - dependency-name: urllib3 dependency-version: 1.26.19 dependency-type: direct:production dependency-group: pip - dependency-name: werkzeug dependency-version: 3.0.6 dependency-type: direct:production dependency-group: pip ... Signed-off-by: dependabot[bot] --- requirements.txt | 18 +++++++++--------- 1 file changed, 9 insertions(+), 9 deletions(-) diff --git a/requirements.txt b/requirements.txt index e1711f29bf46f..628e9dce96671 100644 --- a/requirements.txt +++ b/requirements.txt @@ -8,7 +8,7 @@ cbor2==5.4.2 ; python_version < '3.12' cbor2==5.6.2 ; python_version >= '3.12' chardet==4.0.0 ; python_version < '3.11' # (Jammy) chardet==5.2.0 ; python_version >= '3.11' -cryptography==3.4.8; python_version < '3.12' # incompatibility between pyopenssl 19.0.0 and cryptography>=37.0.0 +cryptography==44.0.1; python_version < '3.12' # incompatibility between pyopenssl 19.0.0 and cryptography>=37.0.0 cryptography==42.0.8 ; python_version >= '3.12' # (Noble) min 41.0.7, pinning 42.0.8 for security fixes decorator==4.4.2 ; python_version < '3.11' # (Jammy) decorator==5.1.1 ; python_version >= '3.11' @@ -23,14 +23,14 @@ gevent==24.2.1 ; sys_platform != 'win32' and python_version >= '3.12' # (Noble) greenlet==1.1.2 ; sys_platform != 'win32' and python_version == '3.10' # (Jammy) greenlet==2.0.2 ; sys_platform != 'win32' and python_version > '3.10' and python_version < '3.12' greenlet==3.0.3 ; sys_platform != 'win32' and python_version >= '3.12' # (Noble) -idna==2.10 ; python_version < '3.12' # requests 2.25.1 depends on idna<3 and >=2.5 +idna==3.7 ; python_version < '3.12' # requests 2.25.1 depends on idna<3 and >=2.5 idna==3.6 ; python_version >= '3.12' Jinja2==3.0.3 ; python_version <= '3.10' -Jinja2==3.1.2 ; python_version > '3.10' +Jinja2==3.1.6 ; python_version > '3.10' libsass==0.20.1 ; python_version < '3.11' libsass==0.22.0 ; python_version >= '3.11' # (Noble) Mostly to have a wheel package lxml==4.8.0 ; python_version <= '3.10' -lxml==4.9.3 ; python_version > '3.10' and python_version < '3.12' # min 4.9.2, pinning 4.9.3 because of missing wheels for darwin in 4.9.3 +lxml==5.4.0 ; python_version > '3.10' and python_version < '3.12' # min 4.9.2, pinning 4.9.3 because of missing wheels for darwin in 4.9.3 lxml==5.2.1; python_version >= '3.12' # (Noble - removed html clean) lxml-html-clean; python_version >= '3.12' # (Noble - removed from lxml, unpinned for futur security patches) MarkupSafe==2.0.1 ; python_version <= '3.10' @@ -43,7 +43,7 @@ openpyxl==3.0.9 ; python_version < '3.12' openpyxl==3.1.2 ; python_version >= '3.12' passlib==1.7.4 # min version = 1.7.2 (Focal with security backports) Pillow==9.0.1 ; python_version <= '3.10' -Pillow==9.4.0 ; python_version > '3.10' and python_version < '3.12' +Pillow==10.3.0 ; python_version > '3.10' and python_version < '3.12' Pillow==10.2.0 ; python_version >= '3.12' # (Noble) Mostly to have a wheel package polib==1.1.1 psutil==5.9.0 ; python_version <= '3.10' @@ -69,18 +69,18 @@ pyusb==1.2.1 qrcode==7.3.1 ; python_version < '3.11' # (jammy) qrcode==7.4.2 ; python_version >= '3.11' reportlab==3.6.8 ; python_version <= '3.10' -reportlab==3.6.12 ; python_version > '3.10' and python_version < '3.12' +reportlab==3.6.13 ; python_version > '3.10' and python_version < '3.12' reportlab==4.1.0 ; python_version >= '3.12' # (Noble) Mostly to have a wheel package -requests==2.25.1 ; python_version < '3.11' # versions < 2.25 aren't compatible w/ urllib3 1.26. Bullseye = 2.25.1. min version = 2.22.0 (Focal) +requests==2.32.4 ; python_version < '3.11' # versions < 2.25 aren't compatible w/ urllib3 1.26. Bullseye = 2.25.1. min version = 2.22.0 (Focal) requests==2.31.0 ; python_version >= '3.11' # (Noble) rjsmin==1.1.0 ; python_version < '3.11' # (jammy) rjsmin==1.2.0 ; python_version >= '3.11' rl-renderPM==4.0.3 ; sys_platform == 'win32' and python_version >= '3.12' # Needed by reportlab 4.1.0 but included in deb package -urllib3==1.26.5 ; python_version < '3.12' # indirect / min version = 1.25.8 (Focal with security backports) +urllib3==1.26.19 ; python_version < '3.12' # indirect / min version = 1.25.8 (Focal with security backports) urllib3==2.0.7 ; python_version >= '3.12' # (Noble) Compatibility with cryptography vobject==0.9.6.1 Werkzeug==2.0.2 ; python_version <= '3.10' -Werkzeug==2.2.2 ; python_version > '3.10' and python_version < '3.12' +Werkzeug==3.0.6 ; python_version > '3.10' and python_version < '3.12' Werkzeug==3.0.1 ; python_version >= '3.12' # (Noble) Avoid deprecation warnings xlrd==1.2.0 ; python_version < '3.12' # (jammy) xlrd==2.0.1 ; python_version >= '3.12'