This is an automated email from the ASF dual-hosted git repository. michaelsmolina pushed a commit to branch 4.0 in repository https://gitbox.apache.org/repos/asf/superset.git
commit ecebd70ba043208ad56f24c0a9351c7c1d2edd5d Author: nigzak <[email protected]> AuthorDate: Fri Mar 1 19:50:17 2024 +0100 chore: numexpr to fix CVE-2023-39631 (2.8.4 => 2.9.0) (#27187) Co-authored-by: Stefan Arnold <[email protected]> (cherry picked from commit f453d5d7e75cfd403b5552d6719b8ebc1f121d9e) --- requirements/base.in | 1 + requirements/base.txt | 8 +++++--- 2 files changed, 6 insertions(+), 3 deletions(-) diff --git a/requirements/base.in b/requirements/base.in index 6ecbbb51d6..d0f7108840 100644 --- a/requirements/base.in +++ b/requirements/base.in @@ -19,3 +19,4 @@ -e file:. urllib3>=1.26.18 werkzeug>=3.0.1 +numexpr>=2.9.0 diff --git a/requirements/base.txt b/requirements/base.txt index 8cdf2bfc96..7abe2783a9 100644 --- a/requirements/base.txt +++ b/requirements/base.txt @@ -1,4 +1,4 @@ -# SHA1:60b260247b40133819664dc998d9e2da48e9a592 +# SHA1:85649679306ea016e401f37adfbad832028d2e5f # # This file is autogenerated by pip-compile-multi # To update, run: @@ -210,8 +210,10 @@ nh3==0.2.11 # via apache-superset numba==0.57.1 # via pandas -numexpr==2.8.4 - # via pandas +numexpr==2.9.0 + # via + # -r requirements/base.in + # pandas numpy==1.23.5 # via # apache-superset
