Skip to content

chore(deps): update dependency requests to v2.32.4#5824

Merged
dlvenable merged 1 commit into
mainfrom
whitesource-remediate/requests-2.x
Jun 25, 2025
Merged

chore(deps): update dependency requests to v2.32.4#5824
dlvenable merged 1 commit into
mainfrom
whitesource-remediate/requests-2.x

Conversation

@mend-for-github-com
Copy link
Copy Markdown
Contributor

@mend-for-github-com mend-for-github-com Bot commented Jun 25, 2025

This PR contains the following updates:

Package Update Change
requests (source, changelog) patch ==2.32.3 -> ==2.32.4

By merging this PR, the issue #5761 will be automatically resolved and closed:

Severity CVSS Score Vulnerability
Medium Medium 5.3 CVE-2024-47081

Release Notes

psf/requests (requests)

v2.32.4

Compare Source

Security

  • CVE-2024-47081 Fixed an issue where a maliciously crafted URL and trusted
    environment will retrieve credentials for the wrong hostname/machine from a
    netrc file.

Improvements

  • Numerous documentation improvements

Deprecations

  • Added support for pypy 3.11 for Linux and macOS.
  • Dropped support for pypy 3.9 following its end of support.
  • If you want to rebase/retry this PR, check this box

@mend-for-github-com mend-for-github-com Bot added the security fix Security fix generated by WhiteSource label Jun 25, 2025
@dlvenable dlvenable merged commit 75d1783 into main Jun 25, 2025
47 of 51 checks passed
@mend-for-github-com mend-for-github-com Bot deleted the whitesource-remediate/requests-2.x branch June 25, 2025 16:15
JonahCalvo pushed a commit to JonahCalvo/os-data-prepper that referenced this pull request Jul 17, 2025
@mend-for-github-com
chore(deps): update dependency requests to v2.32.4 (opensearch-projec…
6d881a6 
…t#5824)

Co-authored-by: mend-for-github-com[bot] <50673670+mend-for-github-com[bot]@users.noreply.github.com>
Signed-off-by: Jonah Calvo <caljonah@amazon.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dlvenable dlvenable dlvenable approved these changes

@sb2k16 sb2k16 Awaiting requested review from sb2k16 sb2k16 is a code owner

@chenqi0805 chenqi0805 Awaiting requested review from chenqi0805

@engechas engechas Awaiting requested review from engechas

@san81 san81 Awaiting requested review from san81 san81 is a code owner

@srikanthjg srikanthjg Awaiting requested review from srikanthjg srikanthjg is a code owner

@graytaylor0 graytaylor0 Awaiting requested review from graytaylor0 graytaylor0 is a code owner

@dinujoh dinujoh Awaiting requested review from dinujoh dinujoh is a code owner

@kkondaka kkondaka Awaiting requested review from kkondaka kkondaka is a code owner

@KarstenSchnitter KarstenSchnitter Awaiting requested review from KarstenSchnitter KarstenSchnitter is a code owner

@oeyh oeyh Awaiting requested review from oeyh oeyh is a code owner

Assignees

No one assigned

Labels

security fix Security fix generated by WhiteSource

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@dlvenable