Skip to content

Commit 66040a7

Browse files
quisquis
committed
Upgrade marshmallow-related dependencies to newest
Addresses CVE-2025-68480 in marshmallow Seems sensible to bring the other related dependencies up to date for compatibility Moves to compatible release operator so we don’t have explicit pins on minor/patch versions going forward.
1 parent fdefd5d commit 66040a7

File tree

3 files changed

+9
-9
lines changed

3 files changed

+9
-9
lines changed

requirements.in

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -5,16 +5,16 @@ celery[sqs]==5.6.0
55
# Pin kombu to merge of PR #2342 (SQS fair queue / MessageGroupId support) until kombu 5.7 is released
66
kombu @ git+https://github.com/celery/kombu.git@860e40a6c904c4d8551577d9f4e8c00f03b6e06c
77
Flask-Bcrypt==1.0.1
8-
flask-marshmallow==1.3.0
8+
flask-marshmallow~=1.3
99
Flask-Migrate==3.1.0
1010
flask-sqlalchemy==3.1.1
1111
click-datetime==0.2
1212
gunicorn[eventlet]~=25.1
1313
eventlet~=0.40.4
1414
iso8601==2.1.0
1515
jsonschema[format]==4.23.0
16-
marshmallow-sqlalchemy==1.0.0
17-
marshmallow==3.21.3
16+
marshmallow-sqlalchemy~=1.0
17+
marshmallow~=3.21
1818
psycopg2-binary==2.9.10
1919
PyJWT==2.10.1
2020
SQLAlchemy==2.0.41

requirements.txt

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -80,7 +80,7 @@ flask==3.1.3
8080
# sentry-sdk
8181
flask-bcrypt==1.0.1
8282
# via -r requirements.in
83-
flask-marshmallow==1.3.0
83+
flask-marshmallow==1.4.0
8484
# via -r requirements.in
8585
flask-migrate==3.1.0
8686
# via -r requirements.in
@@ -141,12 +141,12 @@ markupsafe==3.0.3
141141
# mako
142142
# sentry-sdk
143143
# werkzeug
144-
marshmallow==3.21.3
144+
marshmallow==3.26.2
145145
# via
146146
# -r requirements.in
147147
# flask-marshmallow
148148
# marshmallow-sqlalchemy
149-
marshmallow-sqlalchemy==1.0.0
149+
marshmallow-sqlalchemy==1.4.2
150150
# via -r requirements.in
151151
mistune==0.8.4
152152
# via notifications-utils

requirements_for_test.txt

Lines changed: 3 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -125,7 +125,7 @@ flask==3.1.3
125125
# notifications-utils
126126
flask-bcrypt==1.0.1
127127
# via -r requirements.txt
128-
flask-marshmallow==1.3.0
128+
flask-marshmallow==1.4.0
129129
# via -r requirements.txt
130130
flask-migrate==3.1.0
131131
# via -r requirements.txt
@@ -207,12 +207,12 @@ markupsafe==3.0.3
207207
# jinja2
208208
# mako
209209
# werkzeug
210-
marshmallow==3.21.3
210+
marshmallow==3.26.2
211211
# via
212212
# -r requirements.txt
213213
# flask-marshmallow
214214
# marshmallow-sqlalchemy
215-
marshmallow-sqlalchemy==1.0.0
215+
marshmallow-sqlalchemy==1.4.2
216216
# via -r requirements.txt
217217
mistune==0.8.4
218218
# via

0 commit comments

Comments
 (0)