Skip to content

Bump requests from 2.32.4 to 2.33.0 #73

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Open
dependabot wants to merge 4 commits into
base: main
Choose a base branch
from
Open

Bump requests from 2.32.4 to 2.33.0 #73

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
4 commits
Select commit Hold shift + click to select a range
9944c59
Bump requests from 2.32.4 to 2.33.0
dependabot[bot] Mar 26, 2026
90127ba
Fix missing trailing newlines in JSON output to pass pre-commit end-o…
Mar 30, 2026
f2c2cf5
chore: bump werkzeug to 3.1.6+ and nltk to 3.9.4+ to fix security vul…
Mar 30, 2026
b8ea25e
chore: bump pillow, pip, and tornado to fix security vulnerabilities
Mar 30, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
8 changes: 5 additions & 3 deletions pyproject.toml
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -10,7 +10,9 @@ requires-python = ">=3.11"
dependencies = [
"filelock>=3.20.3", # Pinning version to address vulnerabilities CVE-2025-68146, CVE-2026-22701
"fonttools>=4.60.2", # Pinning version to address vulnerability GHSA-768j-98cg-p3fv
"werkzeug>=3.1.5", # Pinning version to address vulnerabilities GHSA-hgf8-39gv-g3f2, CVE-2026-21860
"pillow>=12.1.1", # Pinning version to address vulnerability CVE-2026-25990
"tornado>=6.5.5", # Pinning version to address vulnerabilities GHSA-78cv-mqj4-43f7, CVE-2026-31958
"werkzeug>=3.1.6", # Pinning version to address vulnerabilities GHSA-hgf8-39gv-g3f2, CVE-2026-21860, CVE-2026-27199
"virtualenv>=20.36.1", # TODO: Update to >=20.36.2 when released to address CVE-2026-22702
"absl-py>=2.3.1",
"python-dotenv>=1.0.0",
Expand All @@ -19,7 +21,7 @@ dependencies = [
"huggingface-hub>=0.33.2",
"matplotlib>=3.7.5",
"natsort>=8.4.0",
"nltk>=3.9.1",
"nltk>=3.9.4", # Pinning version to address vulnerability GHSA-rf74-v2fm-23pw
"numpy>=1.24.4,<2.0.0",
"openai>=1.93.0",
"pytest>=8.4.2",
Expand Down Expand Up @@ -61,7 +63,7 @@ dev = [
"codecov>=2.1.13",
"mypy>=1.14.1",
"nbqa>=1.9.1",
"pip>=25.3", # Pinning version to address vulnerability GHSA-4xh5-x5gv-qwph
"pip>=26.0", # Pinning version to address vulnerabilities GHSA-4xh5-x5gv-qwph, CVE-2026-1703
"pip-audit>=2.7.3",
"pre-commit>=4.1.0",
"pytest>=8.3.4",
Expand Down
2 changes: 1 addition & 1 deletion resdsql/requirements.txt
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -31,7 +31,7 @@ pyasn1-modules==0.4.2
PyYAML==6.0
rapidfuzz==3.8.0
regex==2022.10.31
requests==2.32.4
requests==2.33.0
requests-oauthlib==2.0.0
rsa==4.9.1
sacremoses==0.1.1
Expand Down
4 changes: 2 additions & 2 deletions src/utils/json_io.py
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -58,7 +58,7 @@ def write_json_raw(path: str, data: list[dict]) -> None:
The data to write as JSON.
"""
with open(path, "w") as f:
f.write(json.dumps(data, indent=4))
f.write(json.dumps(data, indent=4) + "\n")


def write_json(path: str, data: list[T]) -> None:
Expand All @@ -74,4 +74,4 @@ def write_json(path: str, data: list[T]) -> None:
"""
out_data = [item.model_dump() for item in data]
with open(path, "w") as f:
f.write(json.dumps(out_data, indent=4))
f.write(json.dumps(out_data, indent=4) + "\n")
2 changes: 1 addition & 1 deletion test.json
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -3,4 +3,4 @@
"idx": "i1",
"a": 1
}
]
]
Loading
Loading