From ea8ff5d8d50e37b0b71c00f19031c284fb0c3637 Mon Sep 17 00:00:00 2001 From: Michel Anderson Lutz Teixeira Date: Mon, 29 Apr 2024 14:29:52 -0300 Subject: [PATCH] update requirements fast api to fastapi[all]>=0.109.1 --- SECURITY.md | 9 ++++++++- app/.env | 2 +- requirements.txt | 2 +- requirements_for_dev.txt | 2 +- 4 files changed, 11 insertions(+), 4 deletions(-) diff --git a/SECURITY.md b/SECURITY.md index c64383f..ca05a3d 100644 --- a/SECURITY.md +++ b/SECURITY.md @@ -7,7 +7,8 @@ currently being supported with security updates. | Version | Supported | | ------- | ------------------ | -| 1.0.x | :white_check_mark: | +| 1.1.0 | :x: | +| 1.1.1 | :white_check_mark: | @@ -19,3 +20,9 @@ Use this section to tell people how to report a vulnerability. Tell them where to go, how often they can expect to get an update on a reported vulnerability, what to expect if the vulnerability is accepted or declined, etc. + +## fastapi + +Original Report + +This was originally reported to FastAPI as an email to security@tiangolo.com, sent via https://huntr.com/, the original reporter is Marcello, https://github.com/byt3bl33d3r \ No newline at end of file diff --git a/app/.env b/app/.env index 1aafca6..2ac39c7 100644 --- a/app/.env +++ b/app/.env @@ -9,4 +9,4 @@ DATABASE_URL=sqlite:///./dev-challenge.db TEST_DATABASE_URL=sqlite:///./dev-challenge-test.db WORKERS_PER_CORE=1 # config for uvicorn MAX_WORKERS=1 # config for uvicorn -VERSION=1.0.0 \ No newline at end of file +VERSION=1.1.1 \ No newline at end of file diff --git a/requirements.txt b/requirements.txt index c37b99e..f8b281e 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,4 +1,4 @@ -fastapi[all]~=0.103.2 +fastapi[all]>=0.109.1 uvicorn passlib~=1.7.4 python-jose diff --git a/requirements_for_dev.txt b/requirements_for_dev.txt index 4eaa695..14642ae 100644 --- a/requirements_for_dev.txt +++ b/requirements_for_dev.txt @@ -1,4 +1,4 @@ -fastapi[all]~=0.103.2 +fastapi[all]>=0.109.1 uvicorn passlib~=1.7.4 python-jose