|
3 | 3 | # vulnerabilities: |
4 | 4 | # werkzeug - [GHSA-f9vj-2wh5-fj8j] |
5 | 5 |
|
6 | | -vulnerable_packages=( "mistune=3.0.1" "transformers=4.36.0" "cryptography=43.0.1" "jupyter-lsp=2.2.2" "scrapy=2.11.2" \ |
| 6 | +vulnerable_packages=( "mistune=3.0.1" "transformers=4.36.0" "cryptography=43.0.3" "jupyter-lsp=2.2.2" "scrapy=2.11.2" \ |
7 | 7 | "zipp=3.19.1" "tornado=6.4.2") |
8 | 8 |
|
9 | 9 | # Define the number of rows (based on the length of vulnerable_packages) |
@@ -45,12 +45,12 @@ for ((i=0; i<rows; i++)); do |
45 | 45 | CONDA_VERSION="0" |
46 | 46 | fi |
47 | 47 | GREATER_VERSION_B=$((echo ${REQUIRED_VERSION}; echo ${CONDA_VERSION}) | sort -V | tail -1) |
48 | | - if [[ $CONDA_VERSION == $GREATER_VERSION_B ]]; then |
| 48 | + if [[ $CONDA_VERSION == $GREATER_VERSION_B && ${packages_array[$i,0]} != "cryptography" ]]; then |
49 | 49 | echo -e "Found Version v${CONDA_VERSION} in the Conda channel which is greater than or equal to the required version: v${REQUIRED_VERSION}. \n"; |
50 | 50 | echo "Installing ${packages_array[$i,0]} from source from conda channel for v${REQUIRED_VERSION}..." |
51 | | - conda install "${packages_array[$i,0]}==${CONDA_VERSION}" |
52 | | - elif [[ $REQUIRED_VERSION == $GREATER_VERSION_B ]]; then |
53 | | - echo -e "Required version: v${REQUIRED_VERSION} is greater than the version found in the Conda channel v${CONDA_VERSION}. \n"; |
| 51 | + conda install "${packages_array[$i,0]}==${CONDA_VERSION}" |
| 52 | + elif [[ $REQUIRED_VERSION == $GREATER_VERSION_B || ${packages_array[$i,0]} == "cryptography" ]]; then |
| 53 | + echo -e "Required version: v${REQUIRED_VERSION} is greater than the version found in the Conda channel v${CONDA_VERSION} or its cryptography package. \n"; |
54 | 54 | echo "Installing ${packages_array[$i,0]} from source from pip package manager for v${REQUIRED_VERSION}..." |
55 | 55 | python3 -m pip install --upgrade --no-cache-dir "${packages_array[$i,0]}==${REQUIRED_VERSION}" |
56 | 56 | fi |
|
0 commit comments