Conversation
santosomar
requested review from
Copilot,
mschuele2,
pahir,
poxman and
ramraaj25
There was a problem hiding this comment.
Pull Request Overview
This PR updates the requests library dependency from a pinned version 2.20.0 to a minimum version constraint >=2.32.0. This change addresses potential security vulnerabilities present in older versions of the requests library and provides more flexibility for dependency resolution by allowing newer compatible versions.
Key Changes:
- Updated requests library from exact version
2.20.0to minimum version>=2.32.0 - Changed from pinned version (
==) to minimum version constraint (>=)
💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.
| @@ -1 +1 @@ | |||
| requests==2.20.0 | |||
| requests>=2.32.0 | |||
There was a problem hiding this comment.
The setup.py file still specifies requests>=2.10.0 in its install_requires list (line 22), which is inconsistent with this update to requests>=2.32.0. Both files should specify the same minimum version requirement to ensure consistent dependency resolution across different installation methods.
Fixes #35
This pull request updates the version requirement for the
requestslibrary to allow for newer versions.Dependency updates:
requestsinrequirements/common.txtfrom a fixed version (2.20.0) to a minimum version (2.32.0), allowing compatibility with newer releases.