From 6a8970ee73df5f00197717405549dc6669ab2428 Mon Sep 17 00:00:00 2001 From: lgcorzo Date: Tue, 28 Apr 2026 20:58:43 +0200 Subject: [PATCH] security: update requirements.txt with secure versions --- requirements.txt | 103 ++++++++++++++++++++++++++++------------------- 1 file changed, 61 insertions(+), 42 deletions(-) diff --git a/requirements.txt b/requirements.txt index 377a051..a33b656 100644 --- a/requirements.txt +++ b/requirements.txt @@ -19,32 +19,37 @@ attrs==26.1.0 ; python_version == "3.12" bandit==1.9.4 ; python_version == "3.12" billiard==4.2.4 ; python_version == "3.12" blinker==1.9.0 ; python_version == "3.12" +boolean-py==5.0 ; python_version == "3.12" brotli==1.2.0 ; python_version == "3.12" -cachetools==5.5.2 ; python_version == "3.12" +cachecontrol[filecache]==0.14.4 ; python_version == "3.12" +cachetools==7.0.6 ; python_version == "3.12" celery==5.6.3 ; python_version == "3.12" -certifi==2026.2.25 ; python_version == "3.12" +certifi==2026.4.22 ; python_version == "3.12" cffi==2.0.0 ; python_version == "3.12" charset-normalizer==3.4.7 ; python_version == "3.12" click-didyoumean==0.3.1 ; python_version == "3.12" click-plugins==1.1.1.2 ; python_version == "3.12" click-repl==0.3.0 ; python_version == "3.12" -click==8.3.2 ; python_version == "3.12" +click==8.3.3 ; python_version == "3.12" cloudpickle==3.1.2 ; python_version == "3.12" colorama==0.4.6 ; python_version == "3.12" configobj==5.0.9 ; python_version == "3.12" confluent-kafka==2.14.0 ; python_version == "3.12" contourpy==1.3.3 ; python_version == "3.12" coverage==7.13.5 ; python_version == "3.12" +coverage[toml]==7.13.5 ; python_version == "3.12" cryptography==46.0.7 ; python_version == "3.12" cycler==0.12.1 ; python_version == "3.12" -databricks-sdk==0.102.0 ; python_version == "3.12" +cyclonedx-python-lib==11.7.0 ; python_version == "3.12" +databricks-sdk==0.105.0 ; python_version == "3.12" +defusedxml==0.7.1 ; python_version == "3.12" deprecated==1.3.1 ; python_version == "3.12" dictdiffer==0.9.0 ; python_version == "3.12" diskcache==5.6.3 ; python_version == "3.12" distro==1.9.0 ; python_version == "3.12" docker==7.1.0 ; python_version == "3.12" dpath==2.2.0 ; python_version == "3.12" -dulwich==1.1.0 ; python_version == "3.12" +dulwich==1.2.0 ; python_version == "3.12" dvc-data==3.18.3 ; python_version == "3.12" dvc-http==2.32.0 ; python_version == "3.12" dvc-objects==5.2.0 ; python_version == "3.12" @@ -54,34 +59,36 @@ dvc-task==0.40.2 ; python_version == "3.12" dvc==3.67.1 ; python_version == "3.12" entrypoints==0.4 ; python_version == "3.12" execnet==2.1.2 ; python_version == "3.12" -fastapi==0.115.14 ; python_version == "3.12" -filelock==3.25.2 ; python_version == "3.12" +fastapi==0.124.0 ; python_version == "3.12" +filelock==3.29.0 ; python_version == "3.12" flask-cors==6.0.2 ; python_version == "3.12" flask==3.1.3 ; python_version == "3.12" -flatten-dict==0.4.2 ; python_version == "3.12" -flufl-lock==9.0.0 ; python_version == "3.12" +flatten-dict==0.5.0 ; python_version == "3.12" +flufl-lock==9.1.0 ; python_version == "3.12" fonttools==4.62.1 ; python_version == "3.12" frozenlist==1.8.0 ; python_version == "3.12" fsspec==2026.3.0 ; python_version == "3.12" +fsspec[http]==2026.3.0 ; python_version == "3.12" +fsspec[tqdm]==2026.3.0 ; python_version == "3.12" funcy==2.0 ; python_version == "3.12" gevent==26.4.0 ; python_version == "3.12" geventhttpclient==2.3.9 ; python_version == "3.12" gitdb==4.0.12 ; python_version == "3.12" -gitpython==3.1.46 ; python_version == "3.12" +gitpython==3.1.48 ; python_version == "3.12" google-auth==2.49.2 ; python_version == "3.12" googleapis-common-protos==1.74.0 ; python_version == "3.12" grandalf==0.8 ; python_version == "3.12" graphene==3.4.3 ; python_version == "3.12" graphql-core==3.2.8 ; python_version == "3.12" graphql-relay==3.2.0 ; python_version == "3.12" -greenlet==3.4.0 ; (platform_machine == "aarch64" or platform_machine == "ppc64le" or platform_machine == "x86_64" or platform_machine == "amd64" or platform_machine == "AMD64" or platform_machine == "win32" or platform_machine == "WIN32" or platform_python_implementation == "CPython") and python_version == "3.12" +greenlet==3.3.2 ; python_version == "3.12" grpcio==1.80.0 ; python_version == "3.12" gto==1.9.0 ; python_version == "3.12" -gunicorn==23.0.0 ; python_version == "3.12" and platform_system != "Windows" +gunicorn==25.3.0 ; platform_system != "Windows" and python_version == "3.12" h11==0.16.0 ; python_version == "3.12" huey==2.6.0 ; python_version == "3.12" hydra-core==1.3.2 ; python_version == "3.12" -idna==3.11 ; python_version == "3.12" +idna==3.13 ; python_version == "3.12" importlib-metadata==8.5.0 ; python_version == "3.12" importlib-resources==6.5.2 ; python_version == "3.12" iniconfig==2.3.0 ; python_version == "3.12" @@ -92,25 +99,27 @@ jinja2==3.1.6 ; python_version == "3.12" joblib==1.5.3 ; python_version == "3.12" kiwisolver==1.5.0 ; python_version == "3.12" kombu==5.6.2 ; python_version == "3.12" -librt==0.9.0 ; python_version == "3.12" and platform_python_implementation != "PyPy" +librt==0.9.0 ; platform_python_implementation != "PyPy" and python_version == "3.12" +license-expression==30.4.4 ; python_version == "3.12" llvmlite==0.47.0 ; python_version == "3.12" loguru==0.7.3 ; python_version == "3.12" -mako==1.3.10 ; python_version == "3.12" +mako==1.3.11 ; python_version == "3.12" markdown-it-py==4.0.0 ; python_version == "3.12" markupsafe==3.0.3 ; python_version == "3.12" -matplotlib==3.10.8 ; python_version == "3.12" +matplotlib==3.10.9 ; python_version == "3.12" mdurl==0.1.2 ; python_version == "3.12" mlflow-skinny==3.11.1 ; python_version == "3.12" mlflow-tracing==3.11.1 ; python_version == "3.12" mlflow==3.11.1 ; python_version == "3.12" mlserver-mlflow==1.7.1 ; python_version == "3.12" -mlserver==1.7.1 ; python_version == "3.12" +mlserver==1.7.2rc1 ; python_version == "3.12" +msgpack==1.1.2 ; python_version == "3.12" multidict==6.7.1 ; python_version == "3.12" multimethod==1.10 ; python_version == "3.12" mypy-extensions==1.1.0 ; python_version == "3.12" -mypy==1.19.1 ; python_version == "3.12" +mypy==1.20.2 ; python_version == "3.12" networkx==3.6.1 ; python_version == "3.12" -numba==0.65.0 ; python_version == "3.12" +numba==0.65.1 ; python_version == "3.12" numpy==1.26.4 ; python_version == "3.12" omegaconf==2.3.0 ; python_version == "3.12" opentelemetry-api==1.30.0 ; python_version == "3.12" @@ -127,12 +136,18 @@ opentelemetry-sdk==1.30.0 ; python_version == "3.12" opentelemetry-semantic-conventions==0.51b0 ; python_version == "3.12" opentelemetry-util-http==0.51b0 ; python_version == "3.12" orjson==3.11.8 ; python_version == "3.12" -packaging==24.2 ; python_version == "3.12" +packageurl-python==0.17.6 ; python_version == "3.12" +packaging==26.2 ; python_version == "3.12" pandas-stubs==3.0.0.260204 ; python_version == "3.12" pandas==2.3.3 ; python_version == "3.12" pandera==0.20.4 ; python_version == "3.12" -pathspec==0.12.1 ; python_version == "3.12" +pandera[mypy]==0.20.4 ; python_version == "3.12" +pathspec==1.1.1 ; python_version == "3.12" pillow==12.2.0 ; python_version == "3.12" +pip-api==0.0.34 ; python_version == "3.12" +pip-audit==2.10.0 ; python_version == "3.12" +pip-requirements-parser==32.0.1 ; python_version == "3.12" +pip==26.1 ; python_version == "3.12" platformdirs==4.9.6 ; python_version == "3.12" plotly==5.24.1 ; python_version == "3.12" pluggy==1.6.0 ; python_version == "3.12" @@ -144,31 +159,32 @@ propcache==0.4.1 ; python_version == "3.12" protobuf==5.29.6 ; python_version == "3.12" psutil==6.1.1 ; python_version == "3.12" py-grpc-prometheus==0.8.0 ; python_version == "3.12" -pyarrow==15.0.2 ; python_version == "3.12" +py-serializable==2.1.0 ; python_version == "3.12" +pyarrow==17.0.0 ; python_version == "3.12" pyasn1-modules==0.4.2 ; python_version == "3.12" pyasn1==0.6.3 ; python_version == "3.12" pycparser==3.0 ; python_version == "3.12" and implementation_name != "PyPy" -pydantic-core==2.41.5 ; python_version == "3.12" -pydantic-settings==2.13.1 ; python_version == "3.12" -pydantic==2.12.5 ; python_version == "3.12" +pydantic-core==2.46.3 ; python_version == "3.12" +pydantic-settings==2.14.0 ; python_version == "3.12" +pydantic==2.13.3 ; python_version == "3.12" pydot==4.0.1 ; python_version == "3.12" pygit2==1.19.2 ; python_version == "3.12" pygments==2.20.0 ; python_version == "3.12" pygtrie==2.5.0 ; python_version == "3.12" pynvml==11.5.3 ; python_version == "3.12" -pyopenssl==26.0.0 ; python_version == "3.12" +pyopenssl==26.1.0 ; python_version == "3.12" pyparsing==3.3.2 ; python_version == "3.12" -pytest-asyncio==0.23.8 ; python_version == "3.12" +pytest-asyncio==1.3.0 ; python_version == "3.12" pytest-cov==5.0.0 ; python_version == "3.12" pytest-mock==3.15.1 ; python_version == "3.12" pytest-xdist==3.8.0 ; python_version == "3.12" -pytest==8.4.2 ; python_version == "3.12" +pytest==9.0.3 ; python_version == "3.12" python-dateutil==2.9.0.post0 ; python_version == "3.12" python-dotenv==1.2.2 ; python_version == "3.12" -python-multipart==0.0.26 ; python_version == "3.12" +python-multipart==0.0.27 ; python_version == "3.12" python-rapidjson==1.23 ; python_version == "3.12" pytz==2026.1.post1 ; python_version == "3.12" -pywin32==311 ; python_version == "3.12" and sys_platform == "win32" +pywin32==311 ; sys_platform == "win32" and python_version == "3.12" pyyaml==6.0.3 ; python_version == "3.12" requests==2.33.1 ; python_version == "3.12" rich==15.0.0 ; python_version == "3.12" @@ -178,46 +194,49 @@ scikit-learn==1.8.0 ; python_version == "3.12" scipy==1.17.1 ; python_version == "3.12" scmrepo==3.6.2 ; python_version == "3.12" semver==3.0.4 ; python_version == "3.12" -setuptools==75.9.1 ; python_version == "3.12" +setuptools==78.1.1 ; python_version == "3.12" shap==0.46.0 ; python_version == "3.12" shellingham==1.5.4 ; python_version == "3.12" shortuuid==1.0.13 ; python_version == "3.12" shtab==1.8.0 ; python_version == "3.12" six==1.17.0 ; python_version == "3.12" -skops==0.13.0 ; python_version == "3.12" +skops==0.14.0 ; python_version == "3.12" slicer==0.0.8 ; python_version == "3.12" smmap==5.0.3 ; python_version == "3.12" +sortedcontainers==2.4.0 ; python_version == "3.12" sqlalchemy==2.0.49 ; python_version == "3.12" sqlparse==0.5.5 ; python_version == "3.12" sqltrie==0.11.2 ; python_version == "3.12" starlette-exporter==0.23.0 ; python_version == "3.12" -starlette==0.46.2 ; python_version == "3.12" +starlette==0.49.3 ; python_version == "3.12" stevedore==5.7.0 ; python_version == "3.12" tabulate==0.10.0 ; python_version == "3.12" tenacity==9.1.4 ; python_version == "3.12" threadpoolctl==3.6.0 ; python_version == "3.12" +tomli-w==1.2.0 ; python_version == "3.12" +tomli==2.4.1 ; python_version == "3.12" tomlkit==0.14.0 ; python_version == "3.12" tqdm==4.67.3 ; python_version == "3.12" -tritonclient==2.67.0 ; python_version == "3.12" +tritonclient[http]==2.68.0 ; python_version == "3.12" typeguard==4.5.1 ; python_version == "3.12" -typer==0.24.1 ; python_version == "3.12" +typer==0.25.0 ; python_version == "3.12" typing-extensions==4.15.0 ; python_version == "3.12" typing-inspect==0.9.0 ; python_version == "3.12" typing-inspection==0.4.2 ; python_version == "3.12" -tzdata==2026.1 ; python_version == "3.12" +tzdata==2026.2 ; python_version == "3.12" tzlocal==5.3.1 ; python_version == "3.12" urllib3==2.6.3 ; python_version == "3.12" -uvicorn==0.44.0 ; python_version == "3.12" +uvicorn==0.46.0 ; python_version == "3.12" uvloop==0.22.1 ; sys_platform != "win32" and sys_platform != "cygwin" and platform_python_implementation != "PyPy" and python_version == "3.12" vine==5.1.0 ; python_version == "3.12" voluptuous==0.16.0 ; python_version == "3.12" -waitress==3.0.2 ; python_version == "3.12" and platform_system == "Windows" +waitress==3.0.2 ; platform_system == "Windows" and python_version == "3.12" wcwidth==0.6.0 ; python_version == "3.12" werkzeug==3.1.8 ; python_version == "3.12" -win32-setctime==1.2.0 ; python_version == "3.12" and sys_platform == "win32" +win32-setctime==1.2.0 ; sys_platform == "win32" and python_version == "3.12" wrapt==1.17.3 ; python_version == "3.12" yarl==1.23.0 ; python_version == "3.12" zc-lockfile==4.0 ; python_version == "3.12" -zipp==3.23.0 ; python_version == "3.12" -zope-event==6.1 ; python_version == "3.12" -zope-interface==8.3 ; python_version == "3.12" +zipp==3.23.1 ; python_version == "3.12" +zope-event==6.2 ; python_version == "3.12" +zope-interface==8.4 ; python_version == "3.12"