Exasol BucketFS
UnreleasedΒΆ
SummaryΒΆ
This release fixes vulnerabilities by updating transitive dependencies in the poetry.lock file.
Dependency |
Version |
ID |
Fix Versions |
Updated to |
|---|---|---|---|---|
black |
25.12.0 |
CVE-2026-32274 |
26.3.1 |
26.3.1 |
cryptography |
46.0.5 |
CVE-2026-34073 |
46.0.6 |
46.0.6 |
pygments |
2.19.2 |
CVE-2026-4539 |
2.20 |
2.20 |
requests |
2.32.5 |
CVE-2026-25645 |
2.33.0 |
2.33.0 |
tornado |
6.5.4 |
GHSA-78cv-mqj4-43f7 |
6.5.5 |
6.5.5 |
tornado |
6.5.4 |
CVE-2026-31958 |
6.5.5 |
6.5.5 |
To ensure usage of secure packages, it is up to the user to similarly relock their dependencies.
Security IssuesΒΆ
#284: Fixed vulnerabilities by re-locking transitive dependencies & updated:
actions/download-artifactfrom v7 to v8actions/upload-artifactfrom v6 to v7