dependencies: fix vulnerabilities

* Adds exceptions: 50748 50792. * Updates the following packages: "dparse>=0.5.2", "mako>=1.2.2". * Forces the `fs` installation to work with poetry>1. Co-Authored-by: Johnny Mariéthoz <Johnny.Mariethoz@rero.ch>
rero · Sep 1, 2022 · 9003ed9 · 9003ed9
1 parent 924955d
commit 9003ed9
Show file tree

Hide file tree

Showing 4 changed files with 31 additions and 68 deletions.
diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -66,6 +66,8 @@ SQLAlchemy = "<1.4.0"
 flask-wiki = {git = "https://github.com/rero/flask-wiki.git", rev = "v0.2.1"}
 sentry-sdk = "<1.6.1"
 pytest-invenio = ">=1.4.0,<1.4.12"
+dparse = ">=0.5.2"
+Mako = ">=1.2.2"
 
 [tool.poetry.dev-dependencies]
 Flask-Debugtoolbar = ">=0.10.1"

diff --git a/scripts/bootstrap b/scripts/bootstrap
@@ -59,6 +59,10 @@ poetry run pip install "setuptools<58"
 section "Install poethepoet"
 poetry run pip install poethepoet
 
+# Needed for poetry > 1.1
+section "Install fs"
+poetry run pip install "fs<2.0.0"
+
 # Installs all packages specified in poetry.lock
 if [ "$deploy" = false ]; then
   section "Updating dependencies" "info"

diff --git a/scripts/test b/scripts/test
@@ -35,15 +35,15 @@ fi
 # +============================+===========+==========================+==========+
 # | wtforms                    | 2.3.3     | <3.0.0a1                 | 42852    |
 # | sqlalchemy-utils           | 0.35.0    | >=0.27.0                 | 42194    |
+# | nbconvert                  | 6.4.5     | <6.5.1                   | 50792    |
+# | lxml                       | 4.7.0     | <4.9.1                   | 50748    |
 # | flask-security             | 3.0.0     | <3.1.0                   | 45183    |
 # | flask-security             | 3.0.0     | >0                       | 44501    |
-# | flask-caching              | 1.10.1    | <=1.10.1                 | 40459    |
 # | click                      | 7.1.2     | <8.0.0                   | 47833    |
 # | celery                     | 5.1.2     | <5.2.0                   | 42498    |
 # | celery                     | 5.1.2     | <5.2.2                   | 43738    |
-# | click                      | 7.1.2     | <8.0.0                   | 47833    |
-# +============================+===========+==========================+==========+
-safety check -i 42852 -i 42050 -i 42194 -i 45183 -i 44501 -i 40459 -i 42498 -i 43738 -i 47833
+# +==============================================================================+
+safety check -i 42852 -i 42050 -i 42194 -i 45183 -i 42498 -i 44501 -i 43738 -i 47833 -i 50748 -i 50792
 pydocstyle sonar tests docs
 isort --check-only --diff "${SCRIPT_PATH}/.."
 autoflake -c -r --remove-all-unused-imports --ignore-init-module-imports . &> /dev/null || {