Merge pull request #223 from rcos/renovate/pypi-eventlet-vulnerability

Apexal · web-flow · commit 98e813ae4f82 · 2025-08-31T22:16:11.000-04:00
Update dependency eventlet to v0.40.3 [SECURITY]
diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -27,7 +27,7 @@ requests-toolbelt = "^1.0.0"
 psycopg2-binary = "^2.9.6"
 redis = "^5.0.0"
 dnspython = "^2.3.0"
-eventlet = "^0.38.0"
+eventlet = "^0.40.0"
 
 
 [tool.poetry.group.dev.dependencies]
diff --git a/requirements.txt b/requirements.txt
@@ -173,9 +173,9 @@ django==5.1.3 ; python_version >= "3.11" and python_version < "4.0" \
 dnspython==2.7.0 ; python_version >= "3.11" and python_version < "4.0" \
     --hash=sha256:b4c34b7d10b51bcc3a5071e7b8dee77939f1e878477eeecc965e9835f63c6c86 \
     --hash=sha256:ce9c432eda0dc91cf618a5cedf1a4e142651196bbcd2c80e89ed5a907e5cfaf1
-eventlet==0.38.0 ; python_version >= "3.11" and python_version < "4.0" \
-    --hash=sha256:a5df970a2431526e4973bd5810bb8c41aa4da18baa531aa18799302c24e19510 \
-    --hash=sha256:d7d457c7d0e793b16bc3f44da1e87eb48639b655c17dc430294d28cc2c67de81
+eventlet==0.40.3; python_version >= "3.11" and python_version < "4.0" \
+    --hash=sha256:290852db0065d78cec17a821b78c8a51cafb820a792796a354592ae4d5fceeb0 \
+    --hash=sha256:e681cae6ee956cfb066a966b5c0541e734cc14879bda6058024104790595ac9d
 gql==3.5.0 ; python_version >= "3.11" and python_version < "4.0" \
     --hash=sha256:70dda5694a5b194a8441f077aa5fb70cc94e4ec08016117523f013680901ecb7 \
     --hash=sha256:ccb9c5db543682b28f577069950488218ed65d4ac70bb03b6929aaadaf636de9
