mirrors/poky
1
0
Fork 0
mirror of https://git.yoctoproject.org/poky synced 2026-05-09 17:39:31 +00:00
Code Issues Projects Releases Wiki Activity

oeqa/maturin/guessing-game: Bump dependencies to avoid security warning

Browse Source 
The Cargo.toml lock for guessing-game, used to test maturin has a minor security
advisory which keeps tripping up github's automated security analysis, "PyO3
Risk of buffer overflow in `PyString::from_object`".

Bump the minimum version requirement for pyo3 to avoid this warning even if it
isn't anything critical and just automated tests.

(From OE-Core rev: 2e817e6e4d53543766b935479b148a1950cc37c8)

Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>
This commit is contained in:
Richard Purdie
2025-06-03 22:29:25 +01:00
parent 5b26a2b507
commit 34383435b6
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files
meta/lib/oeqa/files/maturin/guessing-game/Cargo.toml
+1 -1
View File
@@ -14,7 +14,7 @@ crate-type = ["cdylib"]
rand = "0.8.4"
[dependencies.pyo3]
version = "0.19.0"
version = "0.24.1"
# "abi3-py38" tells pyo3 (and maturin) to build using the stable ABI with minimum Python version 3.8
features = ["abi3-py38"]