Skip to content

Commit 826c8f8

Browse files
dmytroyedmytroye
authored
Fix current CVEs (#1312)
1 parent 7fa6208 commit 826c8f8

File tree

2 files changed

+12
-11
lines changed

2 files changed

+12
-11
lines changed

cluster_analytics/tools/webui/requirements-webui.txt

Lines changed: 10 additions & 9 deletions
Original file line numberDiff line numberDiff line change
@@ -1,13 +1,14 @@
1-
# SPDX-FileCopyrightText: (C) 2025 Intel Corporation
1+
# SPDX-FileCopyrightText: (C) 2025 - 2026 Intel Corporation
22
# SPDX-License-Identifier: Apache-2.0
33
# WebUI dependencies with SHA256 hashes for supply chain security
44

55
# Direct dependencies
6-
flask==3.1.1 \
7-
--hash=sha256:07aae2bb5eaf77993ef57e357491839f5fd9f4dc281593a81a9e4d79a24f295c \
8-
--hash=sha256:284c7b8f2f58cb737f0cf1c30fd7eaf0ccfcde196099d24ecede3fc2005aa59e
9-
flask-socketio==5.4.1 \
10-
--hash=sha256:895da879d162781b9193cbb8fe8f3cf25b263ff242980d5c5e6c16d3c03930d2
6+
flask==3.1.3 \
7+
--hash=sha256:f4bcbefc124291925f1a26446da31a5178f9483862233b23c0c96a20701f670c \
8+
--hash=sha256:0ef0e52b8a9cd932855379197dd8f94047b359ca0a78695144304cb45f87c9eb
9+
flask-socketio==5.6.1 \
10+
--hash=sha256:51a3f71b28b4476c650829607e3a993e076034db6c3cc31f718f0a4b45939d42 \
11+
--hash=sha256:fe5bd995c3ed4da9a98f335d0d830fa1a19d84a64789f6265642a671fdacaeac
1112
python-socketio==5.14.0 \
1213
--hash=sha256:7de5ad8a55efc33e17897f6cf91d20168d3d259f98c38d38e2940af83136d6f8 \
1314
--hash=sha256:d057737f658b3948392ff452a5c865c5ccc969859c37cf095a73393ce755f98e
@@ -16,9 +17,9 @@ eventlet==0.40.3 \
1617
--hash=sha256:e681cae6ee956cfb066a966b5c0541e734cc14879bda6058024104790595ac9d
1718

1819
# Transitive dependencies (required for hash verification)
19-
werkzeug==3.1.5 \
20-
--hash=sha256:5111e36e91086ece91f93268bb39b4a35c1e6f1feac762c9c822ded0a4e322dc \
21-
--hash=sha256:6a548b0e88955dd07ccb25539d7d0cc97417ee9e179677d22c7041c8f078ce67
20+
werkzeug==3.1.6 \
21+
--hash=sha256:7ddf3357bb9564e407607f988f683d72038551200c704012bb9a4c523d42f131 \
22+
--hash=sha256:210c6bede5a420a913956b4791a7f4d6843a43b6fcee4dfa08a65e93007d0d25
2223
jinja2==3.1.6 \
2324
--hash=sha256:85ece4451f492d0c13c5dd7c13a64681a86afae63a5f347908daf103ce6d2f67
2425
itsdangerous==2.2.0 \

mapping/requirements_api.txt

Lines changed: 2 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,9 @@
1-
# SPDX-FileCopyrightText: (C) 2025 Intel Corporation
1+
# SPDX-FileCopyrightText: (C) 2025 - 2026 Intel Corporation
22
# SPDX-License-Identifier: Apache-2.0
33

44
# Service specific dependencies only
55
# (Model dependencies are handled by individual model requirements.txt)
6-
flask>=3.0.0,<3.1.0
6+
flask>=3.1.3,<3.2.0
77
flask-cors==6.0.0
88
gradio==6.7.0
99
open3d-cpu[headless]==0.19.0

0 commit comments

Comments
 (0)