From 8bac30473bb5d1651e0964c4e35721cb28e6f533 Mon Sep 17 00:00:00 2001 From: Matthew McKnight <91097623+McKnight-42@users.noreply.github.com> Date: Wed, 20 Mar 2024 12:31:13 -0500 Subject: [PATCH 1/3] manual backport for cryptography to 42.0.4 --- .changes/unreleased/Dependencies-20240320-111128.yaml | 6 ++++++ dev-requirements.txt | 3 +++ 2 files changed, 9 insertions(+) create mode 100644 .changes/unreleased/Dependencies-20240320-111128.yaml diff --git a/.changes/unreleased/Dependencies-20240320-111128.yaml b/.changes/unreleased/Dependencies-20240320-111128.yaml new file mode 100644 index 000000000..41f1609e4 --- /dev/null +++ b/.changes/unreleased/Dependencies-20240320-111128.yaml @@ -0,0 +1,6 @@ +kind: Dependencies +body: bump cryptography to 42.0.4 or higher for security callouts +time: 2024-03-20T11:11:28.5121-05:00 +custom: + Author: McKnight-42 + PR: "938" diff --git a/dev-requirements.txt b/dev-requirements.txt index 08e76036e..d7db45324 100644 --- a/dev-requirements.txt +++ b/dev-requirements.txt @@ -11,6 +11,9 @@ click~=8.1 cryptography~=41.0.7 ddtrace~=1.16 flake8~=6.0 +cryptography~=42.0.4 +ddtrace==2.3.0 +flake8~=6.1 flaky~=3.7 freezegun~=1.2 ipdb~=0.13.13 From 8a15398d6df40343af738f16eabca6cf915711ae Mon Sep 17 00:00:00 2001 From: Matthew McKnight Date: Thu, 21 Mar 2024 11:28:59 -0500 Subject: [PATCH 2/3] get rid of duplicate dependencies --- dev-requirements.txt | 3 --- 1 file changed, 3 deletions(-) diff --git a/dev-requirements.txt b/dev-requirements.txt index d7db45324..3229f3516 100644 --- a/dev-requirements.txt +++ b/dev-requirements.txt @@ -8,9 +8,6 @@ git+https://github.com/dbt-labs/dbt-core.git@1.6.latest#egg=dbt-tests-adapter&su black~=23.3 bumpversion~=0.6.0 click~=8.1 -cryptography~=41.0.7 -ddtrace~=1.16 -flake8~=6.0 cryptography~=42.0.4 ddtrace==2.3.0 flake8~=6.1 From 97d05ef9815ff385fa038a603e255189fe2b0d15 Mon Sep 17 00:00:00 2001 From: Matthew McKnight Date: Thu, 21 Mar 2024 13:24:08 -0500 Subject: [PATCH 3/3] revert ddtrace and flake8 to earlier bounds --- dev-requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/dev-requirements.txt b/dev-requirements.txt index 3229f3516..f81363e90 100644 --- a/dev-requirements.txt +++ b/dev-requirements.txt @@ -9,8 +9,8 @@ black~=23.3 bumpversion~=0.6.0 click~=8.1 cryptography~=42.0.4 -ddtrace==2.3.0 -flake8~=6.1 +ddtrace~=1.16 +flake8~=6.0 flaky~=3.7 freezegun~=1.2 ipdb~=0.13.13