From 8f4cd79fceca64ca0acefb3f94ca0dd7405d8fa0 Mon Sep 17 00:00:00 2001 From: DaTi_Co Date: Fri, 13 Mar 2026 12:25:37 +0400 Subject: [PATCH 1/3] Potential fix for code scanning alert no. 19: Workflow does not contain permissions Co-authored-by: Copilot Autofix powered by AI <62310815+github-advanced-security[bot]@users.noreply.github.com> --- .github/workflows/path-safety.yml | 3 +++ 1 file changed, 3 insertions(+) diff --git a/.github/workflows/path-safety.yml b/.github/workflows/path-safety.yml index 5116862..246a7b4 100644 --- a/.github/workflows/path-safety.yml +++ b/.github/workflows/path-safety.yml @@ -1,5 +1,8 @@ name: Path safety +permissions: + contents: read + on: pull_request: branches: [ main ] From 9620850637ccd1b14482b6121c9f1aba984891df Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Fri, 13 Mar 2026 08:33:21 +0000 Subject: [PATCH 2/3] Initial plan From f1ac0939b56108603c16241a7b568d056798276a Mon Sep 17 00:00:00 2001 From: "copilot-swe-agent[bot]" <198982749+Copilot@users.noreply.github.com> Date: Fri, 13 Mar 2026 08:42:01 +0000 Subject: [PATCH 3/3] Fix CI failure: update Flask and related dependencies to resolve Jinja2 3.x incompatibility Co-authored-by: DaTiC0 <13198638+DaTiC0@users.noreply.github.com> --- requirements.txt | 10 +++++----- 1 file changed, 5 insertions(+), 5 deletions(-) diff --git a/requirements.txt b/requirements.txt index a70abd5..c08e688 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,10 +1,10 @@ gunicorn==25.1.0 -Flask==1.1.2 +Flask>=2.0.3,<3.0.0 Flask-MQTT==1.1.1 Flask-OAuthlib==0.9.6 -Flask-SQLAlchemy==2.5.1 -SQLAlchemy==1.4.47 -Werkzeug>=2.0.0,<2.4.0 +Flask-SQLAlchemy>=3.0.0,<4.0.0 +SQLAlchemy>=1.4.18,<3.0.0 +Werkzeug>=2.3.7,<3.0.0 Jinja2>=3.0.0,<4.0.0 MarkupSafe>=2.0.0,<3.0.0 itsdangerous>=2.0.0,<3.0.0 @@ -16,4 +16,4 @@ requests-oauthlib requests>=2.31.0 cryptography>=41.0.0 python-dotenv==1.0.0 -Flask-Login==0.4.1 +Flask-Login>=0.6.0,<1.0.0