update versions based on suggestions from aws vulnerability scans

4dn-dcic · Oct 11, 2024 · 788bb88 · 788bb88
1 parent e3eb8d9
commit 788bb88
Show file tree

Hide file tree

Showing 3 changed files with 47 additions and 36 deletions.
diff --git a/CHANGELOG.rst b/CHANGELOG.rst
@@ -6,6 +6,12 @@ dcicutils
 Change Log
 ----------
 
+8.16.1
+======
+* Updated (added) version (43.0.1) for cryptography for (AWS reported) vulnerabilities (CVE-2023-50782, CVE-2024-0727, etc)
+  Updated pyopenssl version (24.2.1) related to above.
+
+
 8.16.0
 ======
 

diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -1,6 +1,6 @@
 [tool.poetry]
 name = "dcicutils"
-version = "8.16.0"
+version = "8.16.0.1b1"  # TODO: To become 8.16.1
 description = "Utility package for interacting with the 4DN Data Portal and other 4DN resources"
 authors = ["4DN-DCIC Team <[email protected]>"]
 license = "MIT"
@@ -47,13 +47,14 @@ elasticsearch = "7.13.4"
 appdirs = "^1.4.4"
 aws-requests-auth = ">=0.4.2,<1"
 chardet = "^5.2.0"
+cryptography = "^43.0.1"
 docker = "^7.1.0"
 gitpython = "^3.1.2"
 jsonc-parser = "^1.1.5"
 jsonschema = "^4.22.0"
 openpyxl = "^3.1.2"
 opensearch-py = "^2.0.1"
-pyOpenSSL = "^23.1.1"
+pyopenssl = "^24.2.1"
 PyJWT = "^2.6.0"
 #pyramid = "^2.0.2"
 pyramid = "1.10.8"