Opened 6 months ago

Last modified 4 weeks ago

#29484 assigned task

Update the requirements.txt and freeze them on release

Reported by: dgoulet Owned by: phw
Priority: Medium Milestone:
Component: Circumvention/BridgeDB Version:
Severity: Normal Keywords: bridgedb, anti-censorship-roadmap-september
Cc: cohosh, gaba, phw Actual Points:
Parent ID: Points: 2
Reviewer: sysrqb Sponsor: Sponsor30-can

Description

The requirements.txt file has package versions that are pinned and some are very old by now.

I've done a quick test and using all the latest works with a very minor fix in the code so far.

We should have a development one that uses the latest packages (maybe?) and then use a minimal one that we use when we release (pip freeze).

This way, we keep up to date with everything and do not fall into the risk of having huge security holes because old dependencies for instance.

Child Tickets

Change History (5)

comment:1 Changed 2 months ago by gaba

Keywords: ex-sponsor-19 added

Adding the keyword to mark everything that didn't fit into the time for sponsor 19.

comment:2 Changed 2 months ago by phw

Sponsor: Sponsor19Sponsor30-can

Moving from Sponsor 19 to Sponsor 30.

comment:3 Changed 2 months ago by gaba

Owner: dgoulet deleted

dgoulet will assign himself to the ones he is working on right now.

comment:4 Changed 6 weeks ago by phw

Cc: gaba added
Owner: set to phw

comment:5 Changed 4 weeks ago by gaba

Cc: phw added
Keywords: anti-censorship-roadmap-september added; ex-sponsor-19 removed
Points: 12
Note: See TracTickets for help on using tickets.