You are viewing a plain text version of this content. The canonical link for it is here.
Posted to commits@superset.apache.org by mi...@apache.org on 2024/03/04 16:37:58 UTC
(superset) 26/28: chore: numexpr to fix CVE-2023-39631 (2.8.4 => 2.9.0) (#27187)
This is an automated email from the ASF dual-hosted git repository.
michaelsmolina pushed a commit to branch 4.0
in repository https://gitbox.apache.org/repos/asf/superset.git
commit ecebd70ba043208ad56f24c0a9351c7c1d2edd5d
Author: nigzak <10...@users.noreply.github.com>
AuthorDate: Fri Mar 1 19:50:17 2024 +0100
chore: numexpr to fix CVE-2023-39631 (2.8.4 => 2.9.0) (#27187)
Co-authored-by: Stefan Arnold <st...@mercedes-benz.com>
(cherry picked from commit f453d5d7e75cfd403b5552d6719b8ebc1f121d9e)
---
requirements/base.in | 1 +
requirements/base.txt | 8 +++++---
2 files changed, 6 insertions(+), 3 deletions(-)
diff --git a/requirements/base.in b/requirements/base.in
index 6ecbbb51d6..d0f7108840 100644
--- a/requirements/base.in
+++ b/requirements/base.in
@@ -19,3 +19,4 @@
-e file:.
urllib3>=1.26.18
werkzeug>=3.0.1
+numexpr>=2.9.0
diff --git a/requirements/base.txt b/requirements/base.txt
index 8cdf2bfc96..7abe2783a9 100644
--- a/requirements/base.txt
+++ b/requirements/base.txt
@@ -1,4 +1,4 @@
-# SHA1:60b260247b40133819664dc998d9e2da48e9a592
+# SHA1:85649679306ea016e401f37adfbad832028d2e5f
#
# This file is autogenerated by pip-compile-multi
# To update, run:
@@ -210,8 +210,10 @@ nh3==0.2.11
# via apache-superset
numba==0.57.1
# via pandas
-numexpr==2.8.4
- # via pandas
+numexpr==2.9.0
+ # via
+ # -r requirements/base.in
+ # pandas
numpy==1.23.5
# via
# apache-superset