Merge pull request #3536 from ryanpetrello/urllib3-1.24.3

pin urllib3 to 1.24.3 to address CVE-2019-9740
2026-01-14 03:10:42 -03:30 · 2019-05-02 14:27:10 -04:00 · 2019-05-02 14:27:10 -04:00 · de56e20f11
commit de56e20f11
parent d4cc595630 6bb9902588
2 changed files with 2 additions and 2 deletions
--- a/requirements/requirements.txt
+++ b/requirements/requirements.txt
@ -112,7 +112,7 @@ twilio==6.10.4
 twisted==18.9.0           # via daphne
 txaio==18.8.1             # via autobahn
 typing==3.6.6             # via django-extensions
-urllib3==1.24.1           # via requests
+urllib3==1.24.3           # via requests
 uwsgi==2.0.17
 uwsgitop==0.10.0
 vine==1.2.0               # via amqp
--- a/requirements/requirements_ansible.txt
+++ b/requirements/requirements_ansible.txt
@ -115,7 +115,7 @@ selectors2==2.0.1         # via ncclient
 six==1.11.0               # via azure-cli-core, bcrypt, cryptography, google-auth, isodate, keystoneauth1, knack, munch, ncclient, ntlm-auth, openstacksdk, ovirt-engine-sdk-python, packaging, pynacl, pyopenssl, python-dateutil, pyvmomi, pywinrm, stevedore
 stevedore==1.28.0         # via keystoneauth1
 tabulate==0.7.7           # via azure-cli-core, knack
-urllib3==1.24             # via requests
+urllib3==1.24.3           # via requests
 wheel==0.30.0             # via azure-cli-core
 xmltodict==0.11.0         # via pywinrm