8000 chore(deps): update urllib3 minimum version with environment markers … · Flared/sentry-python@b7c0dc4 · GitHub
[go: up one dir, main page]
Skip to content

Commit b7c0dc4

Browse files
mikethemanmiketheman
authored
chore(deps): update urllib3 minimum version with environment markers (getsentry#1312)
Uses environment markers according to PEP 508. The current constraint expresses at least urllib3 version 1.10.0, which has at least 5 CVEs open. Projects relying on `sentry-sdk` will get an optimistic version of the latest, so current test suites are already using the latest version which patches these vulnerabilities. Refs: - GHSA-www2-v7xj-xrc6 (critical) - GHSA-mh33-7rrq-662w (high) - GHSA-hmv2-79q8-fv6g (high) - GHSA-wqvq-5m8c-6g24 (moderate) - GHSA-5phf-pp7p-vc2r (moderate)
1 parent 056286b commit b7c0dc4

File tree

1 file changed

+6
-1
lines changed

1 file changed

+6
-1
lines changed

setup.py

Lines changed: 6 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -37,7 +37,12 @@ def get_file_text(file_name):
3737
package_data={"sentry_sdk": ["py.typed"]},
3838
zip_safe=False,
3939
license="BSD",
40-
install_requires=["urllib3>=1.10.0", "certifi"],
40+
install_requires=[
41+
'urllib3>=1.25.7; python_version<="3.4"',
42+
'urllib3>=1.26.9; python_version>="3.5"',
43+
'urllib3>=1.26.11"; python_version >="3.6"',
44+
"certifi",
45+
],
4146
extras_require={
4247
"flask": ["flask>=0.11", "blinker>=1.1"],
4348
"quart": ["quart>=0.16.1", "blinker>=1.1"],

0 commit comments

Comments
 (0)
0