Opened 4 months ago

Last modified 12 days ago

#29484 assigned task

Update the requirements.txt and freeze them on release

Reported by: dgoulet Owned by:
Priority: Medium Milestone:
Component: Circumvention/BridgeDB Version:
Severity: Normal Keywords: bridgedb, ex-sponsor-19
Cc: cohosh Actual Points:
Parent ID: Points: 1
Reviewer: sysrqb Sponsor: Sponsor30-can

Description

The requirements.txt file has package versions that are pinned and some are very old by now.

I've done a quick test and using all the latest works with a very minor fix in the code so far.

We should have a development one that uses the latest packages (maybe?) and then use a minimal one that we use when we release (pip freeze).

This way, we keep up to date with everything and do not fall into the risk of having huge security holes because old dependencies for instance.

Child Tickets

Change History (3)

comment:1 Changed 3 weeks ago by gaba

Keywords: ex-sponsor-19 added

Adding the keyword to mark everything that didn't fit into the time for sponsor 19.

comment:2 Changed 3 weeks ago by phw

Sponsor: Sponsor19Sponsor30-can

Moving from Sponsor 19 to Sponsor 30.

comment:3 Changed 12 days ago by gaba

Owner: dgoulet deleted

dgoulet will assign himself to the ones he is working on right now.

Note: See TracTickets for help on using tickets.