romenskiy2012/curl
1
0
Fork 0
mirror of https://github.com/curl/curl.git synced 2026-04-27 01:42:13 +03:00
Code Issues Projects Releases Packages Wiki Activity
curl/tests/http/requirements.txt
Viktor Szakats e08211b1ca
GHA: bump pip cryptography, relax impacket version requirement 
Bump `cryptography` to a newer version that fixes two known OpenSSL
vulnerabilities reported by Dependabot.

To make it work, also allow `impacket` 0.11.0, because it allows any
pyOpenSSL version, while 0.12.0 pinned it to a single version that
happens to be incompatible with the bugfixed `cryptography` version.

Also: drop spaces from `requirements.txt` files. Bots don't add them,
though they seem to be preferred in the official documentation:
https://pip.pypa.io/en/stable/reference/requirements-file-format/

https://github.com/fortra/impacket/blob/impacket_0_11_0/requirements.txt
https://github.com/fortra/impacket/blob/impacket_0_12_0/requirements.txt

Follow-up to 7d5f8be532 #18708

Closes #18731
2025-09-25 14:22:40 +02:00

10 lines
198 B
Text
Raw Blame History

# Copyright (C) Daniel Stenberg, <daniel@haxx.se>, et al.
#
# SPDX-License-Identifier: curl
cryptography==44.0.1
filelock==3.19.1
psutil==7.1.0
pytest==8.4.2
pytest-xdist==3.8.0
websockets==15.0.1
Reference in a new issue View git blame Copy permalink