From 0a59edd19ad8e271551f754f58c3252356bfb98f Mon Sep 17 00:00:00 2001 From: Josiah Baldwin Date: Mon, 17 Feb 2025 11:50:50 -0800 Subject: [PATCH 1/4] Fixed semvar for requirements --- docs/requirements.txt | 8 ++++---- requirements.txt | Bin 96 -> 138 bytes setup.cfg | 6 +++--- tests/requirements.txt | 4 ++-- 4 files changed, 9 insertions(+), 9 deletions(-) diff --git a/docs/requirements.txt b/docs/requirements.txt index c31abb7..a1fcb4f 100644 --- a/docs/requirements.txt +++ b/docs/requirements.txt @@ -5,8 +5,8 @@ sphinx>=3.2.1 sphinx-jinja2-compat>=0.1.1 sphinx-toolbox>=2.16.0 # sphinx_rtd_theme -cffi==1.17.1 -cryptography==43.0.3 -pycparser==2.22 -websockets==13.1 +cffi~=1.17.1 +cryptography~=43.0.3 +pycparser~=2.22 +websockets~=14.2 enum_tools \ No newline at end of file diff --git a/requirements.txt b/requirements.txt index 369fb1d9b19b3970b382a449476db1cfdd8f5510..729624a09802fc0c425f8c2987557931e1d38e6c 100644 GIT binary patch delta 75 zcmYf3Vw@mlT*qL`V8UR`pvPbU#KsJ~3|tK54555zSBa!kRR0PP?QD*ylh delta 32 mcmeBTOqd`g&db2XP|lFbki<~Tkk63JkPT#)FceSp)dv7=)CUUy diff --git a/setup.cfg b/setup.cfg index a8962e2..759a70e 100644 --- a/setup.cfg +++ b/setup.cfg @@ -44,9 +44,9 @@ python_requires = >=3.8 # For more information, check out https://semver.org/. install_requires = importlib-metadata - cryptography>=43.0.3 - websockets>=13.1 - python-socks[asyncio] + cryptography~=43.0.3 + websockets~=14.2 + python-socks[asyncio]~=2.5.3 [options.packages.find] diff --git a/tests/requirements.txt b/tests/requirements.txt index 15de8b1..715c093 100644 --- a/tests/requirements.txt +++ b/tests/requirements.txt @@ -1,6 +1,6 @@ requests pytest-asyncio cffi==1.17.1 -cryptography==43.0.3 +cryptography~=43.0.3 pycparser==2.22 -websockets==13.1 \ No newline at end of file +websockets~=14.2 \ No newline at end of file From 1a7714663a30a60f7e84abfd7a1d8d08829b80e0 Mon Sep 17 00:00:00 2001 From: Josiah Baldwin Date: Mon, 17 Feb 2025 11:51:13 -0800 Subject: [PATCH 2/4] Updated changelog --- CHANGELOG.rst | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 9e08c55..9765998 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -2,6 +2,11 @@ Changelog ========= +version 1.1.2 +============= +Bugs: + * Fixed semver for requirements. New version of websockets broke this library. + Version 1.1.1 ============= Bugs: From 64dc5eccdf3641574021931c7c5fb8f12bea9f8e Mon Sep 17 00:00:00 2001 From: Josiah Baldwin Date: Mon, 17 Feb 2025 12:06:10 -0800 Subject: [PATCH 3/4] Updated cryptography requirement --- docs/requirements.txt | 2 +- requirements.txt | Bin 138 -> 138 bytes setup.cfg | 2 +- tests/requirements.txt | 2 +- 4 files changed, 3 insertions(+), 3 deletions(-) diff --git a/docs/requirements.txt b/docs/requirements.txt index a1fcb4f..ecf7317 100644 --- a/docs/requirements.txt +++ b/docs/requirements.txt @@ -6,7 +6,7 @@ sphinx-jinja2-compat>=0.1.1 sphinx-toolbox>=2.16.0 # sphinx_rtd_theme cffi~=1.17.1 -cryptography~=43.0.3 +cryptography~=44.0.1 pycparser~=2.22 websockets~=14.2 enum_tools \ No newline at end of file diff --git a/requirements.txt b/requirements.txt index 729624a09802fc0c425f8c2987557931e1d38e6c..0449e97c8dbe4ed604f13976c4549ad5b4de8cd4 100644 GIT binary patch delta 19 YcmeBT>|>z-hvu$6x@&h7&at0Vq5J+yDRo delta 19 YcmeBT>|>z-i2&$6x@&#uGIY0Vp^F-2eap diff --git a/setup.cfg b/setup.cfg index 759a70e..7117231 100644 --- a/setup.cfg +++ b/setup.cfg @@ -44,7 +44,7 @@ python_requires = >=3.8 # For more information, check out https://semver.org/. install_requires = importlib-metadata - cryptography~=43.0.3 + cryptography~=44.0.1 websockets~=14.2 python-socks[asyncio]~=2.5.3 diff --git a/tests/requirements.txt b/tests/requirements.txt index 715c093..c6afd10 100644 --- a/tests/requirements.txt +++ b/tests/requirements.txt @@ -1,6 +1,6 @@ requests pytest-asyncio cffi==1.17.1 -cryptography~=43.0.3 +cryptography~=44.0.1 pycparser==2.22 websockets~=14.2 \ No newline at end of file From a07b0f129aafaeb57b6104e8b2d90b1114842d8f Mon Sep 17 00:00:00 2001 From: Josiah Baldwin Date: Mon, 17 Feb 2025 12:07:19 -0800 Subject: [PATCH 4/4] Updated changelog --- CHANGELOG.rst | 3 +++ 1 file changed, 3 insertions(+) diff --git a/CHANGELOG.rst b/CHANGELOG.rst index 9765998..03eca4c 100644 --- a/CHANGELOG.rst +++ b/CHANGELOG.rst @@ -7,6 +7,9 @@ version 1.1.2 Bugs: * Fixed semver for requirements. New version of websockets broke this library. +Security: + * Updated cryptogaphy to ~44.0.1 to fix ssl vulnerability. + Version 1.1.1 ============= Bugs: