test0908
/
django
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity

Bumped minimum Pillow version to 6.2.0 in test requirements. 

Pillow < 6.2.0 is vulnerable to CVE-2019-16865.
This commit is contained in:
Mariusz Felisiak 2019-10-23 15:07:06 +02:00 committed by GitHub
parent 6e9189c080
commit e10ebf43e1
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
docs/internals/contributing/writing-code/unit-tests.txt
View File

@ -277,7 +277,7 @@ dependencies:
* geoip2_ * geoip2_
* jinja2_ 2.7+ * jinja2_ 2.7+
* numpy_ * numpy_
* Pillow_ * Pillow_ 6.2.0+
* PyYAML_ * PyYAML_
* pytz_ (required) * pytz_ (required)
* pywatchman_ * pywatchman_

2
tests/requirements/py3.txt
View File

@ -5,7 +5,7 @@ docutils
geoip2 geoip2
jinja2 >= 2.9.2 jinja2 >= 2.9.2
numpy numpy
Pillow != 5.4.0 Pillow >= 6.2.0
# pylibmc/libmemcached can't be built on Windows. # pylibmc/libmemcached can't be built on Windows.
pylibmc; sys.platform != 'win32' pylibmc; sys.platform != 'win32'
python-memcached >= 1.59 python-memcached >= 1.59