Skip to content

Markupsafe dependency hash doesn't match #26

New issue
New issue
Open
Open
Markupsafe dependency hash doesn't match#26
@MelissaAutumn

Description

@MelissaAutumn
MelissaAutumn
opened on Apr 12, 2024

Installing requirements leads to

Collecting markupsafe==1.0 (from -r requirements.txt (line 18))
  Downloading MarkupSafe-1.0.tar.gz (14 kB)
ERROR: THESE PACKAGES DO NOT MATCH THE HASHES FROM THE REQUIREMENTS FILE. If you have updated the package versions, please update the hashes. Otherwise, examine the package contents carefully; someone may have tampered with them.
    markupsafe==1.0 from https://files.pythonhosted.org/packages/4d/de/32d741db316d8fdb7680822dd37001ef7a448255de9699ab4bfcbdf4172b/MarkupSafe-1.0.tar.gz (from -r requirements.txt (line 18)):
        Expected sha256 a4ec1aff59b95a14b45eb2e23761a0179e98319da5a7eb76b56ea8cdc7b871c3
             Got        a6be69091dac236ea9c6bc7d012beab42010fa914c459791d627dad4910eb665

Updated hash does indeed match the one on PyPi
https://pypi.org/project/MarkupSafe/1.0/#copy-hash-modal-c08f00c4-fe6b-401f-a4a8-7cbe8b96bca4

Considering thunderbird-website uses markupsafe==2.1.3 we can probably just upgrade this right?

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions