From 8b11f843b0ec56c4ffc1627d7e9cd8bd1202712e Mon Sep 17 00:00:00 2001
From: "Ian H. Pittwood" <pittwoodian@gmail.com>
Date: Fri, 31 May 2019 09:47:49 -0500
Subject: [PATCH] Pin and upgrade dependencies

This change pins the test-requirements.txt dependencies and upgrades
two packages. PyYAML is upgraded to 5.1 to match Spyglass and openpyxl,
used to read Excel files, is upgraded to 2.6.2. Neither upgrade affects
the behavior of spyglass.

Change-Id: I0383ed56e62f64e2316925d1ba9d241b165ebdde
---
 requirements.txt      | 5 +++--
 setup.py              | 4 ++--
 test-requirements.txt | 4 ++--
 3 files changed, 7 insertions(+), 6 deletions(-)

diff --git a/requirements.txt b/requirements.txt
index 36c4dc5..5492042 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,4 +1,5 @@
 click==7.0
-PyYAML==3.12
-openpyxl==2.5.4
+PyYAML==5.1.1
+openpyxl==2.6.2
+
 git+https://opendev.org/airship/spyglass.git
\ No newline at end of file
diff --git a/setup.py b/setup.py
index 8cb64e8..26225af 100644
--- a/setup.py
+++ b/setup.py
@@ -25,8 +25,8 @@ setup(
     packages=find_packages(),
     install_requires=[
         'click==7.0',
-        'PyYAML==3.12',
-        'openpyxl==2.5.4',
+        'PyYAML==5.1',
+        'openpyxl==2.6.2',
     ],
     dependency_links=[
         'git+https://opendev.org/airship/spyglass.git',
diff --git a/test-requirements.txt b/test-requirements.txt
index b4a7d5e..51eeae2 100644
--- a/test-requirements.txt
+++ b/test-requirements.txt
@@ -2,7 +2,7 @@
 yapf==0.27.0
 
 # Linting
-hacking>=1.1.0,<1.2.0 # Apache-2.0
+hacking==1.1.0
 
 # Security
-bandit>=1.5.0
+bandit==1.6.0