(superset) 26/28: chore: numexpr to fix CVE-2023-39631⁠ (2.8.4 => 2.9.0) (#27187)

[mi...@apache.org]

This is an automated email from the ASF dual-hosted git repository.

michaelsmolina pushed a commit to branch 4.0
in repository https://gitbox.apache.org/repos/asf/superset.git

commit ecebd70ba043208ad56f24c0a9351c7c1d2edd5d
Author: nigzak <10...@users.noreply.github.com>
AuthorDate: Fri Mar 1 19:50:17 2024 +0100

    chore: numexpr to fix CVE-2023-39631⁠ (2.8.4 => 2.9.0) (#27187)
    
    Co-authored-by: Stefan Arnold <st...@mercedes-benz.com>
    (cherry picked from commit f453d5d7e75cfd403b5552d6719b8ebc1f121d9e)
---
 requirements/base.in  | 1 +
 requirements/base.txt | 8 +++++---
 2 files changed, 6 insertions(+), 3 deletions(-)

diff --git a/requirements/base.in b/requirements/base.in
index 6ecbbb51d6..d0f7108840 100644
--- a/requirements/base.in
+++ b/requirements/base.in
@@ -19,3 +19,4 @@
 -e file:.
 urllib3>=1.26.18
 werkzeug>=3.0.1
+numexpr>=2.9.0
diff --git a/requirements/base.txt b/requirements/base.txt
index 8cdf2bfc96..7abe2783a9 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -1,4 +1,4 @@
-# SHA1:60b260247b40133819664dc998d9e2da48e9a592
+# SHA1:85649679306ea016e401f37adfbad832028d2e5f
 #
 # This file is autogenerated by pip-compile-multi
 # To update, run:
@@ -210,8 +210,10 @@ nh3==0.2.11
     # via apache-superset
 numba==0.57.1
     # via pandas
-numexpr==2.8.4
-    # via pandas
+numexpr==2.9.0
+    # via
+    #   -r requirements/base.in
+    #   pandas
 numpy==1.23.5
     # via
     #   apache-superset