3847688ab7
The pyyaml is now safe by default: https://github.com/yaml/pyyaml/pull/74/files https://access.redhat.com/security/cve/CVE-2017-18342 https://github.com/search?q=oslo.serialization+yamlutils+user%3Aopenstack+language%3APython&type=Code So the yamlutils is now useless. No project in OpenStack used this module. We can remove it. Sem-Ver: api-break Change-Id: If0a98f1e15d83131cb309e02f892372f353fa5da
14 lines
617 B
Plaintext
14 lines
617 B
Plaintext
# The order of packages is significant, because pip processes them in the order
|
|
# of appearance. Changing the order has an impact on the overall integration
|
|
# process, which may cause wedges in the gate later.
|
|
|
|
# NOTE(harlowja): Because oslo.serialization is used by the client libraries,
|
|
# we do not want to add a lot of dependencies to it. If you find that
|
|
# adding a new feature to oslo.serialization means adding a new dependency,
|
|
# that is a likely indicator that the feature belongs somewhere else.
|
|
|
|
pbr!=2.1.0,>=2.0.0 # Apache-2.0
|
|
msgpack>=0.5.2 # Apache-2.0
|
|
oslo.utils>=3.33.0 # Apache-2.0
|
|
pytz>=2013.6 # MIT
|