saltstack/salt
1
0
Fork 0
mirror of https://github.com/saltstack/salt.git synced 2025-04-17 10:10:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
117424 commits 34 branches 292 tags 803 MiB
Commit graph

59 commits

Author SHA1 Message Date
Pedro Algarvio
53aafe7eba Bump to pyyaml==6.0.1 due to https://github.com/yaml/pyyaml/issues/601 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-07-18 14:21:40 +01:00
Pedro Algarvio
5b2e752d5e Bump to cryptography==41.0.2 to address GHSA-cf7p-gm2m-833m 
The cryptography package before 41.0.2 for Python mishandles SSH certificates that have critical options.
References:

https://nvd.nist.gov/vuln/detail/CVE-2023-38325
[https://github.com/pyca/cryptography/issues/9207](pyca/cryptography#9207)
[https://github.com/pyca/cryptography/issues/9208](pyca/cryptography#9208)
[https://github.com/pyca/cryptography/compare/41.0.1...41.0.2](pyca/cryptography@41.0.1...41.0.2)
https://pypi.org/project/cryptography/#history
[1ca7adc97b](pyca/cryptography@1ca7adc)

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-07-16 17:44:45 -07:00
Pedro Algarvio
3d097b8ed5 Upgrade to cryptography==41.0.1(and therefor pyopenssl==23.2.0 due to https://github.com/advisories/GHSA-5cpq-8wj7-hf2v 
This only really impacts pip installs of Salt and the windows onedir
since the linux and macos onedir build every package dependency from
source, not from pre-existing wheels.

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-07-06 18:04:43 +01:00
MKLeb
a7d7c4151b Lock to immutables>0.16, as that version has problems installing now 2023-06-21 15:39:42 -07:00
Pedro Algarvio
3ae4e2aba5 Add wempy template library to CI requirements now that it supports Py3 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-05-31 14:39:59 +00:00
Megan Wilhite
dc8baed208 Update requests 2023-05-29 18:08:57 +01:00
Pedro Algarvio
4112f05b77 Bump to sqlparse>=0.4.4 due to https://github.com/advisories/GHSA-rrm6-wvj7-cwh2 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-04-25 12:14:52 +01:00
Pedro Algarvio
9a32f14e41 Upgrade to pyopenssl==23.0.0 due to the cryptography upgrade. 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-03-22 15:08:20 +00:00
Pedro Algarvio
5e7d4e3021 Upgrade to cryptography>=39.0.1 
Due to:
  * GHSA-x4qr-2fvf-3mr5
  * GHSA-w7pp-m8wf-vj6r

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-03-22 15:08:20 +00:00
Pedro Algarvio
a5dc669214 Upgrade to oauthlib==3.2.2 
Due to:
  * https://github.com/advisories/GHSA-3pgj-pg6c-r5p7

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-02-23 05:49:08 +00:00
Pedro Algarvio
4b708715f2 Upgrade to werkzeug==2.2.3 
This addresses:
  * https://github.com/advisories/GHSA-px8h-6qxv-m22q
  * https://github.com/advisories/GHSA-xg9f-g7g7-2323

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-02-23 05:49:08 +00:00
Pedro Algarvio
4a2759a80e Bump to ansible>=7.0.0 on Py>=3.9 due to https://github.com/advisories/GHSA-cpx3-93w7-457x 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-02-23 05:49:08 +00:00
Pedro Algarvio
3fa827925f Fix pre-commit by changing the pyzmq requirements. 
It's now `pyzmq>=20.0.0` on all platforms, and `<=22.0.3` just for windows.

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-02-09 05:37:59 +00:00
Pedro Algarvio
cea048be5f Update docs related requirements 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-02-04 14:11:36 +00:00
Pedro Algarvio
6acef263b1 Stop triggering the jinja2.contextfunction deprecation warning 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-01-18 11:54:43 +00:00
Pedro Algarvio
5a0fd275eb Update setptoctitle requirements to stop getting the PY_SSIZE_T_CLEAN warning 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-01-18 11:54:43 +00:00
Pedro Algarvio
c375c752c1 Bump to future==0.18.3 due to https://github.com/advisories/GHSA-v3c5-jqr6-7qm8 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-01-17 10:17:45 +00:00
Pedro Algarvio
e8b8df84bd Match CI requirements to those of PKG 2023-01-17 06:42:27 +00:00
Pedro Algarvio
4ecfd3d3d5 Use packaging for version parsing. looseversion when needed only. 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-01-09 12:31:51 -07:00
Pedro Algarvio
e47e47a7e6 Bump to gitpython==3.1.30 because of https://github.com/advisories/GHSA-hcpj-qp55-gfph 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-12-31 15:02:22 +00:00
jeanluc
97d193db93 Revert pylint upgrade 2022-12-22 08:00:41 -07:00
jeanluc
508dac9c4d Upgrade pylint to 2.13.9 
The necessary fix for linting salt/states/x509_v2.py
is found in v2.13.6. 2.14 seems to be incompatible
with saltpylint.
 2022-12-22 08:00:41 -07:00
David Murphy
75b1be30a6 Further cleanup, removed used of looseversion and packaging 2022-12-20 07:07:21 -07:00
David Murphy
e8441238e1 Initial removal usage of distutils and replacement with setuptools 2022-12-20 07:07:21 -07:00
Pedro Algarvio
d93717384f Bump to certifi>=2022.12.7 
See https://github.com/advisories/GHSA-43fp-rhv2-5gv8 for additional context.

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-12-10 09:55:49 +00:00
Gareth J. Greenaway
4212c320e6 Restore the previous slack engine and deprecate it, rename replace the slack engine to slack_bolt until deprecation 2022-12-07 09:13:55 -07:00
Gareth J. Greenaway
7dcafc60d2
Merge pull request #63194 from s0undt3ch/hotfix/pycurl 
Drop `pycurl` requirement, see https://github.com/saltstack/relative-environment-for-python/issues/50
 2022-12-06 15:17:33 -08:00
Pedro Algarvio
f59bf99cda
Drop pycurl requirement, see https://github.com/saltstack/relative-environment-for-python/issues/50 
Properly compile windows requirements on Py3.10

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-12-05 05:03:44 +00:00
Pedro Algarvio
0d54748a67
Address pytest deprecation warnings 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-12-05 04:47:40 +00:00
Pedro Algarvio
7c9d0fa371 Bump passlib to 1.7.4 for CI testing. Include it for windows too. 2022-12-02 11:19:30 +00:00
Gareth J. Greenaway
50b76ab075 Some better handling when the device is not accessible, bumping up junos-eznc version. 2022-10-11 12:46:08 -06:00
MKLeb
58ec510d26
Merge tag 'v3005.1' into merge-forward/3005.1 
Version 3005.1
 2022-10-04 20:52:23 -04:00
Megan Wilhite
ea431b2c2f Bump oauthlib to 3.2.1 2022-10-03 11:02:28 -07:00
Megan Wilhite
863df6de7e Update mako requirement to 1.2.2 2022-09-22 15:21:26 -07:00
Gareth J. Greenaway
20fb0beb38 package jmespath 2022-09-12 12:13:00 -07:00
Pedro Algarvio
e68cd5e991 Bump to `lxml==4.9.1 to address CVE-2022-2309` 
See https://github.com/advisories/GHSA-wrxv-2j5q-m38w

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-07-08 11:29:32 +01:00
Pedro Algarvio
9bccfcf9c4 Bump to pyjwt==2.4.0 due to CVE-2022-29217 
Twilio also had to be upgraded because it was locked to the vulnerable pyjwt version.

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-06-15 12:15:36 -06:00
Pedro Algarvio
f6fd24f125 Upgrade some requirements 
These requirements should be kept up-to-date as much as possible.

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-06-06 07:18:12 -06:00
Pedro Algarvio
9983b1df09 Move test requirements to requirements files 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-06-02 07:05:09 -06:00
Caleb Beard
5a18c14b0f
Add etcd API v3 implementation (#61911) 
* add etcd3-py to CI requirements for python_version >= 3.6

* Add intial etcd3 implementation and adjust the functional tests

* adjust etcd test suite to test new v3 impl where applicable

* pre-commit fun

* add documentation for new option

* change warnings per suggestions

* change names for backwards compatibility and add back profile kwarg

* pre-commit and lint fixes

* switch docker logic in etcd sdb integration tests

* fix sdb etcd tests v2

* add ls pseudo-functionality to etcd api v3

* move towards recursive kwarg deprecation by adding recurse kwarg as preferred

* add encoding feature and other etcd client args for v3

* precommit

* add deprecations changelog and deprecate waitIndex/index kwargs in favor of start_revision

* pre-commit and revert etcd sdb tests to master version

* remove unused import

* fix mod_watch disbatching

* Make sure to warn if no profile is given and we have a possible connection error

* precommit

* Fix test failures with wrong profile

* Fix v3 -> no v2 error

Previously, when the API was v3-only, but the profile wasn't present
leading to the v2 fallback, it would 404 in certain circumstances.

We can't use a more particular exception in the `_etcd_action` because
the salt loader plays havoc with things.

Co-authored-by: Wayne Werner <wwerner@vmware.com>
Co-authored-by: Gareth J. Greenaway <gareth@saltstack.com>
 2022-05-31 07:40:35 -06:00
Pedro Algarvio
924e17f6d9 Bump to `paramiko==2.10.1 because of CVE-2022-24302` 
https://github.com/advisories/GHSA-f8q4-jwww-x3wv

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-04-08 09:10:15 -04:00
Pedro Algarvio
46e6416e5b Update to `python-gnupg==0.4.8` 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-04-08 09:10:15 -04:00
Thomas Phipps
062637a17e
yaml modules for working towards troubleshooting easement (#61183) 
* create a yamllint utils module. as well as a yaml module that will
eventually be yaml tools to help in troubleshooting yaml
functionality.

* included unit tests for the yaml module. also not happy about moving
from __salt__.module.function to __salt__["module.function"] for the
test to work

* added pre_render test and minor correct to heredoc in yamllint

* changelog

* fix tests running in py3.5, also try and fix pre-commit.

* attempt to fix pre-commit

* still trying to fix pre-commit.

* forgot freebsd, added yamllint to freebsd

* update adding versionadded and depends

* fix pre-commit?

* fix pre-commit

* attempt to fix pre-commit again

Co-authored-by: Megan Wilhite <mwilhite@vmware.com>
 2022-04-06 14:53:21 -04:00
Pedro Algarvio
eb137f185b Don't install napalm on Py3.10, it pulls `pyeapi which is not compatible with 3.10 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-02-28 08:29:49 -08:00
Thomas Phipps
4de025be39 Finalize disabling hgfs and hg_pillar tests on windows. cleanup testing 2022-02-08 10:31:15 -08:00
Thomas Phipps
72196b1c1f this wll break, but hopefully will keep windows from blowing up 2022-02-08 10:31:15 -08:00
Thomas Phipps
bc0e7ed580 remove linux only stuff 2022-02-08 10:31:15 -08:00
Thomas Phipps
c80ed277f5 add hg into ci testing requirments. 2022-02-08 10:31:15 -08:00
Pedro Algarvio
75ed972d72 Update requirements to address know security vulnerabilities 
Closes #61516
Closes #61515
Closes #61514
Closes #61513
Closes #61520
Closes #61096
Closes #60944
Closes #61558
Closes #61559
Closes #61560
Closes #61561

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-02-08 06:34:43 -08:00
MKLeb
5d860e1744 bump lxml to >=4.6.5 2022-01-14 16:21:28 -08:00