Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

updating requests and urllib3 #280

Merged
merged 8 commits into from
Jul 31, 2019
Merged

updating requests and urllib3 #280

merged 8 commits into from
Jul 31, 2019

Conversation

brickyard
Copy link
Contributor

Security scans are showing CRLF injection vulnerabilities in the older versions of requests and urllib3.

included unittests pass and manual spot testing of examples in the README.rst succeed.

@chattarajoy chattarajoy changed the base branch from master to unreleased July 31, 2019 05:33
@chattarajoy chattarajoy force-pushed the update-urllib-requests-versions branch from d255da4 to 85c9712 Compare July 31, 2019 05:34
@chattarajoy
Copy link
Member

thanks for the PR @brickyard. I have added a few other changes to fix the Travis CI and also move requests to 2.21.0 as it is the latest version supported on Python 3.4. I hope that would also resolve the security vulnerability.

@chattarajoy chattarajoy merged commit 7b40634 into qubole:unreleased Jul 31, 2019
chattarajoy pushed a commit that referenced this pull request Jul 31, 2019
@brickyard @chattarajoy
Update requests and urllib library versions (#280)
c5c035b 
This fixes security vulnerabilities in current versions of these packages.
chattarajoy added a commit to chattarajoy/qds-sdk-py that referenced this pull request Nov 4, 2019
@chattarajoy
Revert "Update requests and urllib library versions (qubole#280)"
0e96f9c 
This reverts commit c5c035b.
chattarajoy added a commit that referenced this pull request Nov 4, 2019
@chattarajoy
Revert "Update requests and urllib library versions (#280)"
2266e96
harshashah16 pushed a commit to harshashah16/qds-sdk-py that referenced this pull request Jun 13, 2020
@chattarajoy @shahharsh87
Revert "Update requests and urllib library versions (qubole#280)"
2044438
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@brickyard @chattarajoy