From 5ca7ece0539e7263c0a000a9646cb746880e70cb Mon Sep 17 00:00:00 2001 From: Adam Martin Date: Thu, 10 Jun 2021 12:19:49 -0400 Subject: [PATCH 1/2] update urllib3 to 1.26.5 --- Dockerfile | 2 +- hardening_manifest.yaml | 6 +++--- 2 files changed, 4 insertions(+), 4 deletions(-) diff --git a/Dockerfile b/Dockerfile index a6c985e..686867e 100644 --- a/Dockerfile +++ b/Dockerfile @@ -42,7 +42,7 @@ RUN pip3 install --no-deps tensorflow-1.15.5-cp37-cp37m-manylinux2010_x86_64.whl pip3 install --no-deps certifi-2020.12.5.tar.gz && \ pip3 install --no-deps chardet-4.0.0.tar.gz && \ pip3 install --no-deps idna-3.1.tar.gz && \ - pip3 install --no-deps urllib3-1.26.4.tar.gz && \ + pip3 install --no-deps urllib3-1.26.5.tar.gz && \ pip3 install --no-deps Markdown-3.3.4-py3-none-any.whl && \ pip3 install --no-deps tensorboard_plugin_wit-1.8.0-py3-none-any.whl && \ pip3 install --no-deps Werkzeug-1.0.1.tar.gz && \ diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index 7e4ae20..acdb91e 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -164,11 +164,11 @@ resources: validation: type: sha256 value: c5b02147e01ea9920e6b0a3f1f7bb833612d507592c837a6c49552768f4054e1 -- filename: urllib3-1.26.4.tar.gz - url: https://files.pythonhosted.org/packages/cb/cf/871177f1fc795c6c10787bc0e1f27bb6cf7b81dbde399fd35860472cecbc/urllib3-1.26.4.tar.gz +- filename: urllib3-1.26.5.tar.gz + url: https://files.pythonhosted.org/packages/0c/cd/1e2ec680ec7b09846dc6e605f5a7709dfb9d7128e51a026e7154e18a234e/urllib3-1.26.5-py2.py3-none-any.whl validation: type: sha256 - value: e7b021f7241115872f92f43c6508082facffbd1c048e3c6e2bb9c2a157e28937 + value: 753a0374df26658f99d826cfe40394a686d05985786d946fbe4165b5148f5a7c - filename: Markdown-3.3.4-py3-none-any.whl url: https://files.pythonhosted.org/packages/6e/33/1ae0f71395e618d6140fbbc9587cc3156591f748226075e0f7d6f9176522/Markdown-3.3.4-py3-none-any.whl validation: -- GitLab From b4eb00a6a2df41a662e3bdf1185a0903b825ab88 Mon Sep 17 00:00:00 2001 From: Adam Martin Date: Thu, 10 Jun 2021 14:27:54 -0400 Subject: [PATCH 2/2] correct typo with urllib3 --- hardening_manifest.yaml | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/hardening_manifest.yaml b/hardening_manifest.yaml index acdb91e..0d51b0f 100644 --- a/hardening_manifest.yaml +++ b/hardening_manifest.yaml @@ -165,10 +165,10 @@ resources: type: sha256 value: c5b02147e01ea9920e6b0a3f1f7bb833612d507592c837a6c49552768f4054e1 - filename: urllib3-1.26.5.tar.gz - url: https://files.pythonhosted.org/packages/0c/cd/1e2ec680ec7b09846dc6e605f5a7709dfb9d7128e51a026e7154e18a234e/urllib3-1.26.5-py2.py3-none-any.whl + url: https://files.pythonhosted.org/packages/94/40/c396b5b212533716949a4d295f91a4c100d51ba95ea9e2d96b6b0517e5a5/urllib3-1.26.5.tar.gz validation: type: sha256 - value: 753a0374df26658f99d826cfe40394a686d05985786d946fbe4165b5148f5a7c + value: a7acd0977125325f516bda9735fa7142b909a8d01e8b2e4c8108d0984e6e0098 - filename: Markdown-3.3.4-py3-none-any.whl url: https://files.pythonhosted.org/packages/6e/33/1ae0f71395e618d6140fbbc9587cc3156591f748226075e0f7d6f9176522/Markdown-3.3.4-py3-none-any.whl validation: -- GitLab