e45f28057d
Shipyard Client's version of PyYAML (3.13) conflicts with the version used by Pegleg (5.1). This conflict can cause issues when trying to install Pegleg as it uses Shipyard Client as a dependency. This update to Shipyard Client's PyYAML version will fix the dependency conflict with Pegleg and will also fix a possible security vulnerability associated with older versions of PyYAML. Upgrades PyYAML to version 5.1, which makes several changes: - Deprecates yaml.load in favor of FullLoader and UnsafeLoader due to yaml.load's vulnerability with code injection [0] - Drops support for py33 and py26 - Changes to default_flow_style=False - Several other bug fixes and additional changes [0] https://nvd.nist.gov/vuln/detail/CVE-2017-18342 Change-Id: I8eb4bb02dcc99eab3d983640d6c769cadb3b97e8 |
||
---|---|---|
.. | ||
shipyard_airflow | ||
shipyard_client |