diff --git a/ci/requirements.txt b/ci/requirements.txt index 7162b01570..2cb71ab102 100644 --- a/ci/requirements.txt +++ b/ci/requirements.txt @@ -3,3 +3,4 @@ importlib-metadata<8.0.0 pre-commit==3.0.4 requests>=2.32.0 # not directly required, pinned by Snyk to avoid a vulnerability cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability +certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability diff --git a/doc/poetry.lock b/doc/poetry.lock index a9266e66d5..368c61ebf9 100644 --- a/doc/poetry.lock +++ b/doc/poetry.lock @@ -86,14 +86,14 @@ test-images = ["scikit-image"] [[package]] name = "certifi" -version = "2023.7.22" +version = "2024.7.4" description = "Python package for providing Mozilla's CA Bundle." category = "main" optional = false python-versions = ">=3.6" files = [ - {file = "certifi-2023.7.22-py3-none-any.whl", hash = "sha256:92d6037539857d8206b8f6ae472e8b77db8058fec5937a1ef3f54304089edbb9"}, - {file = "certifi-2023.7.22.tar.gz", hash = "sha256:539cc1d13202e33ca466e88b2807e29f4c13049d6d87031a3c110744495cb082"}, + {file = "certifi-2024.7.4-py3-none-any.whl", hash = "sha256:c198e21b1289c2ab85ee4e67bb4b4ef3ead0892059901a8d5b622f24a1101e90"}, + {file = "certifi-2024.7.4.tar.gz", hash = "sha256:5a1e7645bc0ec61a09e26c36f6106dd4cf40c6db3a1fb6352b0244e7fb057c7b"}, ] [[package]] @@ -1427,4 +1427,4 @@ testing = ["coverage (>=5.0.3)", "zope.event", "zope.testing"] [metadata] lock-version = "2.0" python-versions = ">=3.10,<3.11" -content-hash = "beeb4a3cdcfb398e45f0f8280353ea9935ccacee131f8b0285ee27d6f5b397f9" +content-hash = "e7418d65a40fb4c936eb37faf27d8d78a6ab63eea5afcd934300cefb116d6d87" diff --git a/doc/pyproject.toml b/doc/pyproject.toml index 969f379650..96438df209 100644 --- a/doc/pyproject.toml +++ b/doc/pyproject.toml @@ -24,7 +24,7 @@ Sphinx-Substitution-Extensions = { extras = ["prompt"], version = "2022.2.16" } sphinxcontrib-mermaid = "0.7.1" tilecloud-chain = "1.17.4" requests = "2.32.3" -certifi = "2023.7.22" +certifi = "2024.7.4" urllib3 = "1.26.19" jinja2 = "3.1.4" pillow = "10.3.0" diff --git a/doc/requirements.txt b/doc/requirements.txt index 23562ca017..3bd5c35f82 100644 --- a/doc/requirements.txt +++ b/doc/requirements.txt @@ -4,3 +4,4 @@ requests>=2.32.0 # not directly required, pinned by Snyk to avoid a vulnerabilit urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerability idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability +certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability diff --git a/docker/config/poetry.lock b/docker/config/poetry.lock index d19c0288b5..47a39913a5 100644 --- a/docker/config/poetry.lock +++ b/docker/config/poetry.lock @@ -1,9 +1,10 @@ -# This file is automatically @generated by Poetry 1.8.2 and should not be changed by hand. +# This file is automatically @generated by Poetry and should not be changed by hand. [[package]] name = "attrs" version = "22.2.0" description = "Classes Without Boilerplate" +category = "main" optional = false python-versions = ">=3.6" files = [ @@ -22,6 +23,7 @@ tests-no-zope = ["cloudpickle", "cloudpickle", "hypothesis", "hypothesis", "mypy name = "bottle" version = "0.12.23" description = "Fast and simple WSGI-framework for small web-applications." +category = "main" optional = false python-versions = "*" files = [ @@ -33,6 +35,7 @@ files = [ name = "c2c-template" version = "2.3.0" description = "Vars collector and template runner." +category = "main" optional = false python-versions = "*" files = [ @@ -48,19 +51,21 @@ pyyaml-include = "*" [[package]] name = "certifi" -version = "2023.7.22" +version = "2024.7.4" description = "Python package for providing Mozilla's CA Bundle." +category = "main" optional = false python-versions = ">=3.6" files = [ - {file = "certifi-2023.7.22-py3-none-any.whl", hash = "sha256:92d6037539857d8206b8f6ae472e8b77db8058fec5937a1ef3f54304089edbb9"}, - {file = "certifi-2023.7.22.tar.gz", hash = "sha256:539cc1d13202e33ca466e88b2807e29f4c13049d6d87031a3c110744495cb082"}, + {file = "certifi-2024.7.4-py3-none-any.whl", hash = "sha256:c198e21b1289c2ab85ee4e67bb4b4ef3ead0892059901a8d5b622f24a1101e90"}, + {file = "certifi-2024.7.4.tar.gz", hash = "sha256:5a1e7645bc0ec61a09e26c36f6106dd4cf40c6db3a1fb6352b0244e7fb057c7b"}, ] [[package]] name = "click" version = "8.1.3" description = "Composable command line interface toolkit" +category = "main" optional = false python-versions = ">=3.7" files = [ @@ -75,6 +80,7 @@ colorama = {version = "*", markers = "platform_system == \"Windows\""} name = "click-plugins" version = "1.1.1" description = "An extension module for click to enable registering CLI commands via setuptools entry-points." +category = "main" optional = false python-versions = "*" files = [ @@ -92,6 +98,7 @@ dev = ["coveralls", "pytest (>=3.6)", "pytest-cov", "wheel"] name = "cligj" version = "0.7.2" description = "Click params for commmand line interfaces to GeoJSON" +category = "main" optional = false python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, <4" files = [ @@ -109,6 +116,7 @@ test = ["pytest-cov"] name = "colorama" version = "0.4.6" description = "Cross-platform colored terminal text." +category = "main" optional = false python-versions = "!=3.0.*,!=3.1.*,!=3.2.*,!=3.3.*,!=3.4.*,!=3.5.*,!=3.6.*,>=2.7" files = [ @@ -120,6 +128,7 @@ files = [ name = "defusedxml" version = "0.7.1" description = "XML bomb protection for Python stdlib modules" +category = "main" optional = false python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, !=3.4.*" files = [ @@ -131,6 +140,7 @@ files = [ name = "fiona" version = "1.9.6" description = "Fiona reads and writes spatial data files" +category = "main" optional = false python-versions = ">=3.7" files = [ @@ -178,6 +188,7 @@ test = ["fiona[s3]", "pytest (>=7)", "pytest-cov", "pytz"] name = "jinja2" version = "3.1.4" description = "A very fast and expressive template engine." +category = "main" optional = false python-versions = ">=3.7" files = [ @@ -195,6 +206,7 @@ i18n = ["Babel (>=2.7)"] name = "lxml" version = "4.9.4" description = "Powerful and Pythonic XML processing library combining libxml2/libxslt with the ElementTree API." +category = "main" optional = false python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*, !=3.3.*, != 3.4.*" files = [ @@ -303,6 +315,7 @@ source = ["Cython (==0.29.37)"] name = "mako" version = "1.2.4" description = "A super-fast templating language that borrows the best ideas from the existing templating languages." +category = "main" optional = false python-versions = ">=3.7" files = [ @@ -322,6 +335,7 @@ testing = ["pytest"] name = "markupsafe" version = "2.1.2" description = "Safely add untrusted strings to HTML/XML markup." +category = "main" optional = false python-versions = ">=3.7" files = [ @@ -381,6 +395,7 @@ files = [ name = "pyyaml" version = "6.0" description = "YAML parser and emitter for Python" +category = "main" optional = false python-versions = ">=3.6" files = [ @@ -430,6 +445,7 @@ files = [ name = "pyyaml-include" version = "1.3" description = "Extending PyYAML with a custom constructor for including YAML files within YAML files" +category = "main" optional = false python-versions = ">=3.5" files = [ @@ -448,6 +464,7 @@ toml = ["toml"] name = "six" version = "1.16.0" description = "Python 2 and 3 compatibility utilities" +category = "main" optional = false python-versions = ">=2.7, !=3.0.*, !=3.1.*, !=3.2.*" files = [ @@ -458,4 +475,4 @@ files = [ [metadata] lock-version = "2.0" python-versions = ">=3.10,<3.11" -content-hash = "fb96656abde567cf592a79e9961547aa456ca4823a223cca14c47c766ed39c6c" +content-hash = "ad6019f4543cd0503211f94932494d0cad95861a7f764f8b4e01c01a7c4a451a" diff --git a/docker/config/pyproject.toml b/docker/config/pyproject.toml index efd69d24be..5f2c3ec9d5 100644 --- a/docker/config/pyproject.toml +++ b/docker/config/pyproject.toml @@ -10,5 +10,5 @@ c2c-template = "2.3.0" fiona = "1.9.6" defusedxml = "0.7.1" lxml = "4.9.4" -certifi = "2023.7.22" +certifi = "2024.7.4" jinja2 = "3.1.4" diff --git a/docker/config/requirements.txt b/docker/config/requirements.txt index 1954dd681c..10613cc60c 100644 --- a/docker/config/requirements.txt +++ b/docker/config/requirements.txt @@ -5,3 +5,4 @@ requests>=2.32.0 # not directly required, pinned by Snyk to avoid a vulnerabilit urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerability idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability +certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability diff --git a/docker/qgisserver/requirements.txt b/docker/qgisserver/requirements.txt index 23562ca017..3bd5c35f82 100644 --- a/docker/qgisserver/requirements.txt +++ b/docker/qgisserver/requirements.txt @@ -4,3 +4,4 @@ requests>=2.32.0 # not directly required, pinned by Snyk to avoid a vulnerabilit urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerability idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability +certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability diff --git a/requirements.txt b/requirements.txt index 23562ca017..3bd5c35f82 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,3 +4,4 @@ requests>=2.32.0 # not directly required, pinned by Snyk to avoid a vulnerabilit urllib3>=1.26.17 # not directly required, pinned by Snyk to avoid a vulnerability idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability cryptography>=42.0.8 # not directly required, pinned by Snyk to avoid a vulnerability +certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability