Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

chore: Upgrade Python requirements #35305

Closed
wants to merge 1 commit into from
Closed

chore: Upgrade Python requirements #35305

wants to merge 1 commit into from

Conversation

edx-requirements-bot
Copy link
Contributor

Python requirements update. Please review the changelogs for the upgraded packages.

@edx-requirements-bot edx-requirements-bot requested a review from a team August 13, 2024 02:24
@iamsobanjaved iamsobanjaved self-assigned this Aug 15, 2024
iamsobanjaved
iamsobanjaved approved these changes Aug 17, 2024
View reviewed changes
Copy link
Contributor

@iamsobanjaved iamsobanjaved left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This will be merged on Monday.

requirements/edx/base.txt
@@ -625,7 +625,7 @@ grpcio==1.65.4
# grpcio-status
grpcio-status==1.62.3
# via google-api-core
gunicorn==22.0.0
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It has a few breaking changes, so we need to keep an eye on deployment.

** Breaking changes **

  • refuse requests where the uri field is empty (pull request 3255)
  • refuse requests with invalid CR/LR/NUL in heade field values (pull request 3253)
  • remove temporary --tolerate-dangerous-framing switch from 22.0 (pull request 3260)
  • If any of the breaking changes affect you, be aware that now refused requests can post a security problem, especially so in setups involving request pipe-lining and/or proxies.

https://docs.gunicorn.org/en/stable/news.html#id1

@edx-requirements-bot
Copy link
Contributor Author

Closing obsolete PR.

@edx-requirements-bot edx-requirements-bot deleted the repo-tools/upgrade-python-requirements-059f833 branch August 20, 2024 02:23
@edx-requirements-bot edx-requirements-bot mentioned this pull request Aug 20, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@iamsobanjaved iamsobanjaved iamsobanjaved approved these changes

Assignees

@iamsobanjaved iamsobanjaved

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
2 participants
@edx-requirements-bot @iamsobanjaved