From 5b83e912f8f856d583388a1e95056899694c3888 Mon Sep 17 00:00:00 2001 From: Thomas Yurek Date: Thu, 16 May 2024 16:42:18 -0700 Subject: [PATCH] Fix vulnerability in tqdm dependency (#2404) Summary: Pull Request resolved: https://github.com/facebookresearch/fbpcs/pull/2404 Automated checkup noticed that this repo is using a version of tqdm with a known security vulnerability: P1230616905. Moreover, D57063468 changes to the new version in fbpcp and comments indicate that these versions should be kept in sync. Reviewed By: ankushksingh, joe1234wu Differential Revision: D57464049 fbshipit-source-id: e8c25efb490a66a4404571c909db6164b994fdd8 --- fbpcs/pip_requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/fbpcs/pip_requirements.txt b/fbpcs/pip_requirements.txt index 0745ee723..523506d0c 100644 --- a/fbpcs/pip_requirements.txt +++ b/fbpcs/pip_requirements.txt @@ -12,5 +12,5 @@ termcolor==1.1.0 thriftpy2==0.4.14 pytz>=2022.1 thrift>=0.16.0 # logging_service client requires this -tqdm==4.55.1 # fbpcp requires this version, so we must as well +tqdm==4.66.3 # fbpcp requires this version, so we must as well urllib3==1.26.18 # fbpcp requires this version, so we must as well