[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

[tor-bugs] #29484 [Obfuscation/BridgeDB]: Update the requirements.txt and freeze them on release

To: undisclosed-recipients: ;
Subject: [tor-bugs] #29484 [Obfuscation/BridgeDB]: Update the requirements.txt and freeze them on release
From: "Tor Bug Tracker & Wiki" <blackhole@xxxxxxxxxxxxxx>
Date: Tue, 12 Feb 2019 17:44:39 -0000
Auto-submitted: auto-generated
Delivered-to: archiver@xxxxxxxx
Delivery-date: Tue, 12 Feb 2019 12:44:49 -0500
List-archive: <http://lists.torproject.org/pipermail/tor-bugs/>
List-help: <mailto:tor-bugs-request@lists.torproject.org?subject=help>
List-id: "auto: Tor bug tracker status mails" <tor-bugs.lists.torproject.org>
List-post: <mailto:tor-bugs@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-bugs>, <mailto:tor-bugs-request@lists.torproject.org?subject=unsubscribe>
Reply-to: no-reply@xxxxxxxxxxxxxx, tor-assistants@xxxxxxxxxxxxxx
Sender: "tor-bugs" <tor-bugs-bounces@xxxxxxxxxxxxxxxxxxxx>

#29484: Update the requirements.txt and freeze them on release
--------------------------------------+----------------------
     Reporter:  dgoulet               |      Owner:  dgoulet
         Type:  task                  |     Status:  assigned
     Priority:  Medium                |  Milestone:
    Component:  Obfuscation/BridgeDB  |    Version:
     Severity:  Normal                |   Keywords:  bridgedb
Actual Points:                        |  Parent ID:
       Points:  1                     |   Reviewer:  sysrqb
      Sponsor:  Sponsor19             |
--------------------------------------+----------------------
 The `requirements.txt` file has package versions that are pinned and some
 are very old by now.

 I've done a quick test and using all the latest works with a very minor
 fix in the code so far.

 We should have a development one that uses the latest packages (maybe?)
 and then use a minimal one that we use when we release (pip freeze).

 This way, we keep up to date with everything and do not fall into the risk
 of having huge security holes because old dependencies for instance.

--
Ticket URL: <https://trac.torproject.org/projects/tor/ticket/29484>
Tor Bug Tracker & Wiki <https://trac.torproject.org/>
The Tor Project: anonymity online

_______________________________________________
tor-bugs mailing list
tor-bugs@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-bugs

Prev by Author: Re: [tor-bugs] #29068 [Core Tor/Tor]: shellcheck: zero_length_keys.sh issues
Next by Author: Re: [tor-bugs] #23886 [Core Tor/Tor]: Write FFI bindings and function pointers for ed25519-dalek
Previous by thread: Re: [tor-bugs] #29483 [Obfuscation/BridgeDB]: Use systemd init script for BridgeDB
Next by thread: Re: [tor-bugs] #22227 [Applications/Tor Browser]: Netmonitor Remote Address is always 0.0.0.0 localhost
Index(es):
- Author
- Thread