From d609242e2c86b2a17a940fea8038e76766d5cfe4 Mon Sep 17 00:00:00 2001 From: Philipp Homberger Date: Thu, 2 Nov 2023 16:52:03 +0100 Subject: [PATCH 1/5] Update requirements.txt To Close two Snyk SEC Findings: https://snyk.io/vuln/SNYK-PYTHON-AZURESTORAGEBLOB-2949173 https://snyk.io/vuln/SNYK-PYTHON-AZURESTORAGEQUEUE-2949174 --- requirements.txt | 2 ++ 1 file changed, 2 insertions(+) diff --git a/requirements.txt b/requirements.txt index fd87645..588d57b 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,3 +3,5 @@ azure-mgmt==0.30.0a1 msrestazure azure<5.0 apache-libcloud<3.0.0 +azure-storage-blob>=12.13.0 +azure-storage-queue>=12.4.0 From 29953f320541118b0f0583c60347601e503406b0 Mon Sep 17 00:00:00 2001 From: Philipp Homberger Date: Thu, 2 Nov 2023 16:53:20 +0100 Subject: [PATCH 2/5] Update pack.yaml --- pack.yaml | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/pack.yaml b/pack.yaml index d52dce9..a2cff98 100644 --- a/pack.yaml +++ b/pack.yaml @@ -11,7 +11,7 @@ keywords: - virtual machines - azure virtual machines - azurerm -version: 1.0.0 +version: 1.1.0 author : StackStorm, Inc. email : info@stackstorm.com python_versions: From 376416dd56b7acc54612b9258b3549f63064d13c Mon Sep 17 00:00:00 2001 From: Philipp Homberger Date: Thu, 2 Nov 2023 16:56:04 +0100 Subject: [PATCH 3/5] Update CHANGES.md --- CHANGES.md | 5 +++++ 1 file changed, 5 insertions(+) diff --git a/CHANGES.md b/CHANGES.md index a21bf50..8b52e30 100644 --- a/CHANGES.md +++ b/CHANGES.md @@ -2,6 +2,11 @@ ## 1.0.0 +* Close: https://security.snyk.io/vuln/SNYK-PYTHON-AZURESTORAGEBLOB-2949173 +* Close: https://security.snyk.io/vuln/SNYK-PYTHON-AZURESTORAGEQUEUE-2949174 + +## 1.0.0 + * Drop Python 2.7 support ## 0.4.3 From 6fe8d778c2fccecf07609410a95da0611e8a8c51 Mon Sep 17 00:00:00 2001 From: Philipp Homberger Date: Thu, 2 Nov 2023 16:56:13 +0100 Subject: [PATCH 4/5] Update CHANGES.md --- CHANGES.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/CHANGES.md b/CHANGES.md index 8b52e30..7d4e9cb 100644 --- a/CHANGES.md +++ b/CHANGES.md @@ -1,6 +1,6 @@ # Change Log -## 1.0.0 +## 1.1.0 * Close: https://security.snyk.io/vuln/SNYK-PYTHON-AZURESTORAGEBLOB-2949173 * Close: https://security.snyk.io/vuln/SNYK-PYTHON-AZURESTORAGEQUEUE-2949174 From 07c0837087982a42ab618f449f8fefd929641ba2 Mon Sep 17 00:00:00 2001 From: Philipp Homberger Date: Thu, 2 Nov 2023 17:03:54 +0100 Subject: [PATCH 5/5] Update build_and_test.yaml --- .github/workflows/build_and_test.yaml | 1 + 1 file changed, 1 insertion(+) diff --git a/.github/workflows/build_and_test.yaml b/.github/workflows/build_and_test.yaml index ea29e58..644fc6b 100644 --- a/.github/workflows/build_and_test.yaml +++ b/.github/workflows/build_and_test.yaml @@ -16,3 +16,4 @@ jobs: enable-common-libs: true #apt-cache-version: v0 py-cache-version: v1 + python-version: "3.8"