[PATCH] python: requirements.txt: Update a few modules for security issues
Tom Rini
trini at konsulko.com
Fri Jul 11 20:43:36 CEST 2025
The GitHub dependabot tool has reported a number of issues recently with
some modules that we use. While unlikely to be exploitable in the way we
use them, update various libraries to the latest.
Reported-by: GitHub dependabot
Signed-off-by: Tom Rini <trini at konsulko.com>
---
Cc: Heinrich Schuchardt <xypron.glpk at gmx.de>
---
doc/sphinx/requirements.txt | 4 ++--
tools/patman/requirements.txt | 6 +++---
2 files changed, 5 insertions(+), 5 deletions(-)
diff --git a/doc/sphinx/requirements.txt b/doc/sphinx/requirements.txt
index 12c5772684dc..8572c15ef68f 100644
--- a/doc/sphinx/requirements.txt
+++ b/doc/sphinx/requirements.txt
@@ -10,7 +10,7 @@ MarkupSafe==3.0.2
packaging==24.1
pip==24.2
Pygments==2.18.0
-requests==2.32.3
+requests==2.32.4
six==1.16.0
snowballstemmer==2.2.0
Sphinx==8.1.3
@@ -24,4 +24,4 @@ sphinxcontrib-jquery==4.1
sphinxcontrib-jsmath==1.0.1
sphinxcontrib-qthelp==2.0.0
sphinxcontrib-serializinghtml==2.0.0
-urllib3==2.2.3
+urllib3==2.5.0
diff --git a/tools/patman/requirements.txt b/tools/patman/requirements.txt
index ce9a38545275..d4fcb1061c2f 100644
--- a/tools/patman/requirements.txt
+++ b/tools/patman/requirements.txt
@@ -1,6 +1,6 @@
-aiohttp==3.9.1
+aiohttp==3.10.11
ConfigParser==7.1.0
importlib_resources==6.5.2
pygit2==1.14.1
-Requests==2.32.3
-setuptools==75.8.0
+requests==2.32.4
+setuptools==78.1.1
--
2.43.0
More information about the U-Boot
mailing list