saltstack/salt
1
0
Fork 0
mirror of https://github.com/saltstack/salt.git synced 2025-04-17 10:10:20 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 2
118071 commits 34 branches 292 tags 803 MiB
Commit graph

101 commits

Author SHA1 Message Date
Pedro Algarvio
6dff22e227 Properly constraint CI requirements from PKG requirements 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-09-29 16:12:59 +01:00
Pedro Algarvio
5241abd10a Bump to cryptography==41.0.4 due to https://github.com/advisories/GHSA-v8gr-m533-ghj9 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-09-25 21:03:45 +01:00
Pedro Algarvio
e348a49ed5 Bump to pytest-salt-factories==1.0.0rc26 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-09-25 17:26:12 +01:00
Pedro Algarvio
519666b0cf Set cgroupns to host to fix the libvirt migration tests. 
This needs a newer version of the python docker package.

The breakage was due to updating the docker container used. - https://github.com/saltstack/salt-ci-containers/pull/42

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-09-24 22:10:53 +01:00
Pedro Algarvio
9fb51b083a Bump to docker==6.1.2 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-09-24 22:10:53 +01:00
Pedro Algarvio
cbcbe14d47 Bump to pytest-salt-factories==1.0.0rc25 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-09-19 20:37:29 +00:00
Pedro Algarvio
5033860d2a Don't use requirements with extras as that breaks pip constraints usage 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-09-19 20:37:29 +00:00
Pedro Algarvio
fd0a725d7e Bump to gitpython==3.1.35 
Due to https://github.com/advisories/GHSA-cwvm-v4w8-q58c
Due to https://github.com/advisories/GHSA-wfm5-v35h-vwf4

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-09-12 09:23:32 +01:00
Pedro Algarvio
c3477da2dd The 3006.x branch is Python >= 3.7 already. Remove unnecessary python_version markers. 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-09-12 09:23:32 +01:00
Pedro Algarvio
386799f623 Update to gitpython>=3.1.32 due to https://github.com/advisories/GHSA-pr76-5cm5-w9cj 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-08-16 01:38:20 +01:00
Megan Wilhite
a46d846ab6 Update to cryptography==41.0.3 due to https://github.com/advisories/GHSA-jm77-qphf-c4w8 2023-08-06 07:31:13 +01:00
David Murphy
80785185ac Remove cython and other pyyaml changes, now pyyaml 6.0.1 fixes cython 3.0 issue 2023-07-28 18:24:59 +01:00
David Murphy
af8d19061a Updated test to use importorskip, downgrade pyyaml to 5.3.1 to work around cython 3.0 issues 2023-07-28 18:24:59 +01:00
David Murphy
2d2b720871 Removed debug logging and updated requirements per reviewer suggestions 2023-07-28 18:24:59 +01:00
David Murphy
d65aed8ced Updated immutables as per reviewer comments 2023-07-28 18:24:59 +01:00
David Murphy
497b9b117d Remove debig log statements and update immutables version used 2023-07-28 18:24:59 +01:00
David Murphy
c6b4671b86 Updated versions of cffi used 2023-07-28 18:24:59 +01:00
David Murphy
d2f1900bd9 Adjusted pynacl version per python version 2023-07-28 18:24:59 +01:00
David Murphy
2824bb9263 Updates due to rebase 2023-07-28 18:24:59 +01:00
Pedro Algarvio
301df340e7 Bump to certifi==2023.07.22 due to https://github.com/advisories/GHSA-xqr8-7jwr-rhp7 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-07-28 10:51:00 +01:00
Pedro Algarvio
145a0ed6fc Bump to aiohttp==3.8.5 due to https://github.com/advisories/GHSA-45c4-8wx5-qw6w 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-07-21 18:00:56 +01:00
Pedro Algarvio
53aafe7eba Bump to pyyaml==6.0.1 due to https://github.com/yaml/pyyaml/issues/601 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-07-18 14:21:40 +01:00
Pedro Algarvio
5b2e752d5e Bump to cryptography==41.0.2 to address GHSA-cf7p-gm2m-833m 
The cryptography package before 41.0.2 for Python mishandles SSH certificates that have critical options.
References:

https://nvd.nist.gov/vuln/detail/CVE-2023-38325
[https://github.com/pyca/cryptography/issues/9207](pyca/cryptography#9207)
[https://github.com/pyca/cryptography/issues/9208](pyca/cryptography#9208)
[https://github.com/pyca/cryptography/compare/41.0.1...41.0.2](pyca/cryptography@41.0.1...41.0.2)
https://pypi.org/project/cryptography/#history
[1ca7adc97b](pyca/cryptography@1ca7adc)

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-07-16 17:44:45 -07:00
Pedro Algarvio
3d097b8ed5 Upgrade to cryptography==41.0.1(and therefor pyopenssl==23.2.0 due to https://github.com/advisories/GHSA-5cpq-8wj7-hf2v 
This only really impacts pip installs of Salt and the windows onedir
since the linux and macos onedir build every package dependency from
source, not from pre-existing wheels.

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-07-06 18:04:43 +01:00
MKLeb
a7d7c4151b Lock to immutables>0.16, as that version has problems installing now 2023-06-21 15:39:42 -07:00
Pedro Algarvio
3ae4e2aba5 Add wempy template library to CI requirements now that it supports Py3 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-05-31 14:39:59 +00:00
Megan Wilhite
dc8baed208 Update requests 2023-05-29 18:08:57 +01:00
Pedro Algarvio
4112f05b77 Bump to sqlparse>=0.4.4 due to https://github.com/advisories/GHSA-rrm6-wvj7-cwh2 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-04-25 12:14:52 +01:00
Gareth J. Greenaway
a533bb8c93 MD4 is disabled in later versions of openssl, but NTLM authentication needs it. Lock pyspnego to 0.8.0, which has added support for MD4, and smbprotocol to 1.10.1 which takes advantage of the support in this version of pyspnego. 2023-04-10 04:41:20 +01:00
Pedro Algarvio
9a32f14e41 Upgrade to pyopenssl==23.0.0 due to the cryptography upgrade. 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-03-22 15:08:20 +00:00
Pedro Algarvio
5e7d4e3021 Upgrade to cryptography>=39.0.1 
Due to:
  * GHSA-x4qr-2fvf-3mr5
  * GHSA-w7pp-m8wf-vj6r

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-03-22 15:08:20 +00:00
Pedro Algarvio
a5dc669214 Upgrade to oauthlib==3.2.2 
Due to:
  * https://github.com/advisories/GHSA-3pgj-pg6c-r5p7

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-02-23 05:49:08 +00:00
Pedro Algarvio
4b708715f2 Upgrade to werkzeug==2.2.3 
This addresses:
  * https://github.com/advisories/GHSA-px8h-6qxv-m22q
  * https://github.com/advisories/GHSA-xg9f-g7g7-2323

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-02-23 05:49:08 +00:00
Pedro Algarvio
3fa827925f Fix pre-commit by changing the pyzmq requirements. 
It's now `pyzmq>=20.0.0` on all platforms, and `<=22.0.3` just for windows.

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-02-09 05:37:59 +00:00
Pedro Algarvio
cea048be5f Update docs related requirements 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-02-04 14:11:36 +00:00
Pedro Algarvio
6acef263b1 Stop triggering the jinja2.contextfunction deprecation warning 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-01-18 11:54:43 +00:00
Pedro Algarvio
5a0fd275eb Update setptoctitle requirements to stop getting the PY_SSIZE_T_CLEAN warning 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-01-18 11:54:43 +00:00
Pedro Algarvio
c375c752c1 Bump to future==0.18.3 due to https://github.com/advisories/GHSA-v3c5-jqr6-7qm8 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-01-17 10:17:45 +00:00
Pedro Algarvio
e8b8df84bd Match CI requirements to those of PKG 2023-01-17 06:42:27 +00:00
Pedro Algarvio
4ecfd3d3d5 Use packaging for version parsing. looseversion when needed only. 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2023-01-09 12:31:51 -07:00
Pedro Algarvio
e47e47a7e6 Bump to gitpython==3.1.30 because of https://github.com/advisories/GHSA-hcpj-qp55-gfph 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-12-31 15:02:22 +00:00
David Murphy
75b1be30a6 Further cleanup, removed used of looseversion and packaging 2022-12-20 07:07:21 -07:00
David Murphy
e8441238e1 Initial removal usage of distutils and replacement with setuptools 2022-12-20 07:07:21 -07:00
Pedro Algarvio
a350c4474a Revert "Bump to pytest-salt-factories==1.0.0rc23 on Python >= 3.7" 
This reverts commit 8bd0b7dabb.
 2022-12-17 14:30:12 +00:00
Pedro Algarvio
cc91a1bf64 Bump to pytest-salt-factories==1.0.0rc23 on Python >= 3.7 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-12-15 09:17:47 -07:00
Pedro Algarvio
d93717384f Bump to certifi>=2022.12.7 
See https://github.com/advisories/GHSA-43fp-rhv2-5gv8 for additional context.

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-12-10 09:55:49 +00:00
Pedro Algarvio
97e2994bd5 Revert "Bump to pytest-salt-factories==1.0.0rc22" 
This reverts commit f62df06b24.
 2022-12-09 11:12:15 +00:00
Gareth J. Greenaway
7dcafc60d2
Merge pull request #63194 from s0undt3ch/hotfix/pycurl 
Drop `pycurl` requirement, see https://github.com/saltstack/relative-environment-for-python/issues/50
 2022-12-06 15:17:33 -08:00
Pedro Algarvio
f62df06b24
Bump to pytest-salt-factories==1.0.0rc22 
Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-12-06 16:51:46 +00:00
Pedro Algarvio
f59bf99cda
Drop pycurl requirement, see https://github.com/saltstack/relative-environment-for-python/issues/50 
Properly compile windows requirements on Py3.10

Signed-off-by: Pedro Algarvio <palgarvio@vmware.com>
 2022-12-05 05:03:44 +00:00