Do not fix certifi version

It's not safe to constraint certifi since we need to use latest CA certificates anytime and not force deployments to use outdated CA files. This is inspured with latest Let's Encrypt Root CA rotation, since older deployments can't reach even opendev because of outdated certifi. Change-Id: I3eeab01ccb758cf4eeebcb5da8bf0aea1ff77a88
2021-10-25 14:10:31 +03:00 · 2021-10-25 14:10:31 +03:00 · a420f293d6
parent fc823beb60
commit a420f293d6
2 changed files with 3 additions and 1 deletions
--- a/blacklist.txt
+++ b/blacklist.txt
@ -51,3 +51,6 @@ tempest

 # annoying from setuptools
 pkg_resources
+
+# We want to always have latest list of trusted Certificate Authorities
+certifi
--- a/upper-constraints.txt
+++ b/upper-constraints.txt
@ -40,7 +40,6 @@ cursive===0.2.2
 oslo.service===2.7.0
 django-appconf===1.0.5
 pykerberos===1.2.1
-certifi===2021.10.8
 sphinxcontrib-nwdiag===2.0.0
 rbd-iscsi-client===0.1.8
 requests-aws===0.1.8