Skip to content

Fix CVEs in requests, jinja2, cryptography dependencies#882

Closed
PiyushTiwari-LowCode wants to merge 1 commit intomendix:masterfrom
PiyushTiwari-LowCode:fix-CVE-upgradeLibraries-cryptography_requests_jinja2
Closed

Fix CVEs in requests, jinja2, cryptography dependencies#882
PiyushTiwari-LowCode wants to merge 1 commit intomendix:masterfrom
PiyushTiwari-LowCode:fix-CVE-upgradeLibraries-cryptography_requests_jinja2

Conversation

@PiyushTiwari-LowCode
Copy link
Copy Markdown

@PiyushTiwari-LowCode PiyushTiwari-LowCode commented Mar 27, 2026

CVE's in below 3 libraries are resolved (From -> To)

1 requests==2.32.3-> 2.32.5
2 jinja2==3.1.4 -> 3.1.6
3. cryptography==43.0.3 46.0.5
4. urllib3 dependency version was already correct in requirements.txt, its now aligned to requirements.in .

@mayankmendix mayankmendix self-requested a review March 31, 2026 13:14
@mayankmendix
Copy link
Copy Markdown
Contributor

mayankmendix commented Mar 31, 2026

Changes looks good.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@mayankmendix mayankmendix Awaiting requested review from mayankmendix

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@PiyushTiwari-LowCode @mayankmendix