From 5f4d2930ce6bea72798f776960910dc542292af8 Mon Sep 17 00:00:00 2001 From: Aaron Riedener Date: Mon, 1 Apr 2024 10:40:50 +0200 Subject: [PATCH] updated the dependencies to reduce vulnerabilities --- Dockerfile | 1 + LICENSE | 29 +++++++++++++++++++++++++++++ requirements.txt | 4 ++-- 3 files changed, 32 insertions(+), 2 deletions(-) create mode 100644 LICENSE diff --git a/Dockerfile b/Dockerfile index 5bb9aab..48e1629 100644 --- a/Dockerfile +++ b/Dockerfile @@ -11,6 +11,7 @@ RUN apt-get update && apt-get install -y \ WORKDIR /usr/src/app # Install dependencies +RUN pip install --upgrade pip COPY requirements.txt /usr/src/app/ RUN pip install --no-cache-dir -r requirements.txt diff --git a/LICENSE b/LICENSE new file mode 100644 index 0000000..b4cdf93 --- /dev/null +++ b/LICENSE @@ -0,0 +1,29 @@ +BSD 3-Clause License + +Copyright (c) 2009-2024, Aaron Riedener, Untereggen, Switzerland +All rights reserved. + +Redistribution and use in source and binary forms, with or without +modification, are permitted provided that the following conditions are met: + +* Redistributions of source code must retain the above copyright notice, this + list of conditions and the following disclaimer. + +* Redistributions in binary form must reproduce the above copyright notice, + this list of conditions and the following disclaimer in the documentation + and/or other materials provided with the distribution. + +* Neither the name of the copyright holder nor the names of its + contributors may be used to endorse or promote products derived from + this software without specific prior written permission. + +THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" +AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE +IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE +DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE +FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL +DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR +SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER +CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, +OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE +OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. diff --git a/requirements.txt b/requirements.txt index 9d37993..0f8152f 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,8 +1,8 @@ -Django==3.2.20 +Django==3.2.25 django-filebrowser==3.14.3 lxml==5.1.0 olefile==0.46 -Pillow==7.1.2 +Pillow==10.2.0 psycopg2-binary==2.8.4 pytz==2022.4 django-grappelli==2.15.7