fix(deps): update dependency pyyaml to v5.4 [security] (#229)

* fix(deps): update dependency pyyaml to v5.4 [security] * Skipping 5.4 and instead bumping to 6.0.1 - 6.0.1 introduces a solution to build issues on the 5.x branch caused by Cython 3.0 release that has blocked us from bumping this dep --------- Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Co-authored-by: wbanks <[email protected]>
cds-snc · Sep 12, 2023 · f63ebcc · f63ebcc
1 parent 2fd0d33
commit f63ebcc
Show file tree

Hide file tree

Showing 3 changed files with 56 additions and 19 deletions.
diff --git a/.github/actions/waffles/requirements.txt b/.github/actions/waffles/requirements.txt
@@ -1,4 +1,4 @@
 docopt==0.6.2
 Flask==2.3.3
 markupsafe==2.1.3
-git+https://github.com/cds-snc/[email protected].8#egg=notifications-utils
+git+https://github.com/cds-snc/[email protected].9#egg=notifications-utils
diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -5,7 +5,7 @@ include = '(notifications_utils|tests)/.*\.pyi?$'
 
 [tool.poetry]
 name = "notifications-utils"
-version = "52.0.8"
+version = "52.0.9"
 description = "Shared python code for Notification - Provides logging utils etc."
 authors = ["Canadian Digital Service"]
 license = "MIT license"
@@ -29,7 +29,7 @@ markupsafe = "2.1.3"
 Jinja2 = "^3.0.0"
 statsd = "3.3.0"
 Flask-Redis = "0.4.0"
-PyYAML = "5.3.1"
+PyYAML = "6.0.1"
 phonenumbers = "8.13.19"
 pytz = "2021.3"
 smartypants = "2.0.1"