From 13b3e161bae8a63cba32f78bbc9d4500429d9b95 Mon Sep 17 00:00:00 2001 From: BinoyOza-okta Date: Mon, 13 Apr 2026 18:48:32 +0530 Subject: [PATCH 1/3] fix: upgrade dependencies to resolve Dependabot security alerts MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Bump runtime and dev dependencies to their latest secure versions and upgrade GitHub Actions to current major releases. Runtime dependency updates: - aenum: 3.1.11 → 3.1.16 - aiohttp: 3.12.14 → 3.13.3 - pydash: 8.0.5 → 8.0.6 - PyJWT: 2.10.1 → 2.11.0 - PyYAML: 6.0.2 → 6.0.3 - requests: 2.32.3 → 2.32.5 - xmltodict: 0.14.2 → 1.0.2 Dev/test dependency updates: - flake8: 7.1.2 → 7.3.0 (pyproject/setup: >=4.0.0 → >=7.3.0) - pyfakefs: 5.8.0 → 5.10.2 - pytest: 8.3.5 → 8.4.2 (test-requirements: ~=7.1.3 → ~=8.4.2) - pytest-asyncio: 0.26.0 → 1.2.0 - pytest-mock: 3.14.0 → 3.15.1 - pytest-recording: 0.13.2 → 0.13.4 - tox: 4.24.2 → 4.30.3 (pyproject/setup: >=3.9.0 → >=4.30.3) - twine: 6.1.0 → 6.2.0 GitHub Actions updates: - actions/checkout: v2/v3 → v6 - actions/setup-python: v2/v4 → v6 Changes applied across: - requirements.txt, setup.py, pyproject.toml, test-requirements.txt - openapi/templates/ (mustache templates for code generation) - .github/workflows/python-package.yml, .github/workflows/python.yml --- .github/workflows/python-package.yml | 4 +-- .github/workflows/python.yml | 4 +-- openapi/templates/pyproject.mustache | 6 ++-- openapi/templates/requirements.mustache | 30 ++++++++++---------- openapi/templates/setup.mustache | 14 ++++----- openapi/templates/test-requirements.mustache | 2 +- pyproject.toml | 6 ++-- requirements.txt | 30 ++++++++++---------- setup.py | 14 ++++----- test-requirements.txt | 2 +- 10 files changed, 56 insertions(+), 56 deletions(-) diff --git a/.github/workflows/python-package.yml b/.github/workflows/python-package.yml index e34d22a3e..2b9f63764 100644 --- a/.github/workflows/python-package.yml +++ b/.github/workflows/python-package.yml @@ -19,9 +19,9 @@ jobs: python-version: ["3.10", "3.11", "3.12", "3.13"] steps: - - uses: actions/checkout@v2 + - uses: actions/checkout@v6 - name: Set up Python ${{ matrix.python-version }} - uses: actions/setup-python@v2 + uses: actions/setup-python@v6 with: python-version: ${{ matrix.python-version }} - name: Install dependencies diff --git a/.github/workflows/python.yml b/.github/workflows/python.yml index af6211206..3e715705d 100644 --- a/.github/workflows/python.yml +++ b/.github/workflows/python.yml @@ -16,9 +16,9 @@ jobs: python-version: ["3.10", "3.11", "3.12", "3.13"] steps: - - uses: actions/checkout@v3 + - uses: actions/checkout@v6 - name: Set up Python ${{ matrix.python-version }} - uses: actions/setup-python@v4 + uses: actions/setup-python@v6 with: python-version: ${{ matrix.python-version }} - name: Install dependencies diff --git a/openapi/templates/pyproject.mustache b/openapi/templates/pyproject.mustache index ed59e34eb..8e9be1e07 100644 --- a/openapi/templates/pyproject.mustache +++ b/openapi/templates/pyproject.mustache @@ -29,9 +29,9 @@ pydantic = ">=2" typing-extensions = ">=4.7.1" [tool.poetry.dev-dependencies] -pytest = ">=7.2.1" -tox = ">=3.9.0" -flake8 = ">=4.0.0" +pytest = ">=8.4.2" +tox = ">=4.30.3" +flake8 = ">=7.3.0" types-python-dateutil = ">=2.8.19.14" mypy = "1.4.1" diff --git a/openapi/templates/requirements.mustache b/openapi/templates/requirements.mustache index a3f31d8e9..e48aa2e4b 100644 --- a/openapi/templates/requirements.mustache +++ b/openapi/templates/requirements.mustache @@ -1,22 +1,22 @@ -aenum==3.1.11 -aiohttp==3.12.14 +aenum==3.1.16 +aiohttp==3.13.3 blinker==1.9.0 jwcrypto==1.5.6 pycryptodomex==3.23.0 pydantic==2.11.3 -pydash==8.0.5 -PyJWT==2.10.1 +pydash==8.0.6 +PyJWT==2.11.0 python-dateutil==2.9.0.post0 -PyYAML==6.0.2 -requests==2.32.3 -xmltodict==0.14.2 +PyYAML==6.0.3 +requests==2.32.5 +xmltodict==1.0.2 # Development & Testing Tools -flake8==7.1.2 -pyfakefs==5.8.0 -pytest==8.3.5 -pytest-asyncio==0.26.0 -pytest-mock==3.14.0 -pytest-recording==0.13.2 -tox==4.24.2 -twine==6.1.0 +flake8==7.3.0 +pyfakefs==5.10.2 +pytest==8.4.2 +pytest-asyncio==1.2.0 +pytest-mock==3.15.1 +pytest-recording==0.13.4 +tox==4.30.3 +twine==6.2.0 diff --git a/openapi/templates/setup.mustache b/openapi/templates/setup.mustache index 4ab77345e..968549d62 100644 --- a/openapi/templates/setup.mustache +++ b/openapi/templates/setup.mustache @@ -33,18 +33,18 @@ from setuptools import setup, find_packages # noqa: H301 NAME = "okta" PYTHON_REQUIRES = ">=3.10" REQUIRES = [ - "aenum >= 3.1.11", - "aiohttp >= 3.12.14", + "aenum >= 3.1.16", + "aiohttp >= 3.13.3", "blinker >= 1.9.0", 'jwcrypto >= 1.5.6', "pycryptodomex >= 3.23.0", "pydantic >= 2.11.3", - "pydash >= 8.0.5", - "PyJWT >= 2.10.1", + "pydash >= 8.0.6", + "PyJWT >= 2.11.0", "python-dateutil >= 2.9.0.post0", - "PyYAML >= 6.0.2", - "requests >= 2.32.3", - "xmltodict >= 0.14.2", + "PyYAML >= 6.0.3", + "requests >= 2.32.5", + "xmltodict >= 1.0.2", ] def get_version(): diff --git a/openapi/templates/test-requirements.mustache b/openapi/templates/test-requirements.mustache index 8e6d8cb13..54a0ab917 100644 --- a/openapi/templates/test-requirements.mustache +++ b/openapi/templates/test-requirements.mustache @@ -1,4 +1,4 @@ -pytest~=7.1.3 +pytest~=8.4.2 pytest-cov>=2.8.1 pytest-randomly>=3.12.0 mypy>=1.4.1 diff --git a/pyproject.toml b/pyproject.toml index 8cc994cd1..5b6d9716f 100644 --- a/pyproject.toml +++ b/pyproject.toml @@ -18,9 +18,9 @@ pydantic = ">=2" typing-extensions = ">=4.7.1" [tool.poetry.dev-dependencies] -pytest = ">=7.2.1" -tox = ">=3.9.0" -flake8 = ">=4.0.0" +pytest = ">=8.4.2" +tox = ">=4.30.3" +flake8 = ">=7.3.0" types-python-dateutil = ">=2.8.19.14" mypy = "1.4.1" diff --git a/requirements.txt b/requirements.txt index a3f31d8e9..e48aa2e4b 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,22 +1,22 @@ -aenum==3.1.11 -aiohttp==3.12.14 +aenum==3.1.16 +aiohttp==3.13.3 blinker==1.9.0 jwcrypto==1.5.6 pycryptodomex==3.23.0 pydantic==2.11.3 -pydash==8.0.5 -PyJWT==2.10.1 +pydash==8.0.6 +PyJWT==2.11.0 python-dateutil==2.9.0.post0 -PyYAML==6.0.2 -requests==2.32.3 -xmltodict==0.14.2 +PyYAML==6.0.3 +requests==2.32.5 +xmltodict==1.0.2 # Development & Testing Tools -flake8==7.1.2 -pyfakefs==5.8.0 -pytest==8.3.5 -pytest-asyncio==0.26.0 -pytest-mock==3.14.0 -pytest-recording==0.13.2 -tox==4.24.2 -twine==6.1.0 +flake8==7.3.0 +pyfakefs==5.10.2 +pytest==8.4.2 +pytest-asyncio==1.2.0 +pytest-mock==3.15.1 +pytest-recording==0.13.4 +tox==4.30.3 +twine==6.2.0 diff --git a/setup.py b/setup.py index 4ab77345e..968549d62 100644 --- a/setup.py +++ b/setup.py @@ -33,18 +33,18 @@ NAME = "okta" PYTHON_REQUIRES = ">=3.10" REQUIRES = [ - "aenum >= 3.1.11", - "aiohttp >= 3.12.14", + "aenum >= 3.1.16", + "aiohttp >= 3.13.3", "blinker >= 1.9.0", 'jwcrypto >= 1.5.6', "pycryptodomex >= 3.23.0", "pydantic >= 2.11.3", - "pydash >= 8.0.5", - "PyJWT >= 2.10.1", + "pydash >= 8.0.6", + "PyJWT >= 2.11.0", "python-dateutil >= 2.9.0.post0", - "PyYAML >= 6.0.2", - "requests >= 2.32.3", - "xmltodict >= 0.14.2", + "PyYAML >= 6.0.3", + "requests >= 2.32.5", + "xmltodict >= 1.0.2", ] def get_version(): diff --git a/test-requirements.txt b/test-requirements.txt index 8e6d8cb13..54a0ab917 100644 --- a/test-requirements.txt +++ b/test-requirements.txt @@ -1,4 +1,4 @@ -pytest~=7.1.3 +pytest~=8.4.2 pytest-cov>=2.8.1 pytest-randomly>=3.12.0 mypy>=1.4.1 From 2ea32502ca0dbd530359ec1725a56538744b2b77 Mon Sep 17 00:00:00 2001 From: BinoyOza-okta Date: Mon, 13 Apr 2026 19:17:49 +0530 Subject: [PATCH 2/3] - Upgraded recommended versions for aiohttp and PyJWT library to address the security and vulnerability concerns. --- openapi/templates/requirements.mustache | 4 ++-- openapi/templates/setup.mustache | 4 ++-- requirements.txt | 4 ++-- setup.py | 4 ++-- 4 files changed, 8 insertions(+), 8 deletions(-) diff --git a/openapi/templates/requirements.mustache b/openapi/templates/requirements.mustache index e48aa2e4b..c34c9a855 100644 --- a/openapi/templates/requirements.mustache +++ b/openapi/templates/requirements.mustache @@ -1,11 +1,11 @@ aenum==3.1.16 -aiohttp==3.13.3 +aiohttp==3.13.4 blinker==1.9.0 jwcrypto==1.5.6 pycryptodomex==3.23.0 pydantic==2.11.3 pydash==8.0.6 -PyJWT==2.11.0 +PyJWT==2.12.0 python-dateutil==2.9.0.post0 PyYAML==6.0.3 requests==2.32.5 diff --git a/openapi/templates/setup.mustache b/openapi/templates/setup.mustache index 968549d62..aa5141c2a 100644 --- a/openapi/templates/setup.mustache +++ b/openapi/templates/setup.mustache @@ -34,13 +34,13 @@ NAME = "okta" PYTHON_REQUIRES = ">=3.10" REQUIRES = [ "aenum >= 3.1.16", - "aiohttp >= 3.13.3", + "aiohttp >= 3.13.4", "blinker >= 1.9.0", 'jwcrypto >= 1.5.6', "pycryptodomex >= 3.23.0", "pydantic >= 2.11.3", "pydash >= 8.0.6", - "PyJWT >= 2.11.0", + "PyJWT >= 2.12.0", "python-dateutil >= 2.9.0.post0", "PyYAML >= 6.0.3", "requests >= 2.32.5", diff --git a/requirements.txt b/requirements.txt index e48aa2e4b..c34c9a855 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,11 +1,11 @@ aenum==3.1.16 -aiohttp==3.13.3 +aiohttp==3.13.4 blinker==1.9.0 jwcrypto==1.5.6 pycryptodomex==3.23.0 pydantic==2.11.3 pydash==8.0.6 -PyJWT==2.11.0 +PyJWT==2.12.0 python-dateutil==2.9.0.post0 PyYAML==6.0.3 requests==2.32.5 diff --git a/setup.py b/setup.py index 968549d62..aa5141c2a 100644 --- a/setup.py +++ b/setup.py @@ -34,13 +34,13 @@ PYTHON_REQUIRES = ">=3.10" REQUIRES = [ "aenum >= 3.1.16", - "aiohttp >= 3.13.3", + "aiohttp >= 3.13.4", "blinker >= 1.9.0", 'jwcrypto >= 1.5.6', "pycryptodomex >= 3.23.0", "pydantic >= 2.11.3", "pydash >= 8.0.6", - "PyJWT >= 2.11.0", + "PyJWT >= 2.12.0", "python-dateutil >= 2.9.0.post0", "PyYAML >= 6.0.3", "requests >= 2.32.5", From 17e49215b40aedf084d0121f9f8d187c6ad3f722 Mon Sep 17 00:00:00 2001 From: BinoyOza-okta Date: Mon, 13 Apr 2026 19:26:42 +0530 Subject: [PATCH 3/3] - Upgraded recommended versions for requests library to address the security and vulnerability concerns. --- openapi/templates/requirements.mustache | 2 +- openapi/templates/setup.mustache | 2 +- requirements.txt | 2 +- setup.py | 2 +- 4 files changed, 4 insertions(+), 4 deletions(-) diff --git a/openapi/templates/requirements.mustache b/openapi/templates/requirements.mustache index c34c9a855..bba3ee574 100644 --- a/openapi/templates/requirements.mustache +++ b/openapi/templates/requirements.mustache @@ -8,7 +8,7 @@ pydash==8.0.6 PyJWT==2.12.0 python-dateutil==2.9.0.post0 PyYAML==6.0.3 -requests==2.32.5 +requests==2.33.0 xmltodict==1.0.2 # Development & Testing Tools diff --git a/openapi/templates/setup.mustache b/openapi/templates/setup.mustache index aa5141c2a..d97861ba1 100644 --- a/openapi/templates/setup.mustache +++ b/openapi/templates/setup.mustache @@ -43,7 +43,7 @@ REQUIRES = [ "PyJWT >= 2.12.0", "python-dateutil >= 2.9.0.post0", "PyYAML >= 6.0.3", - "requests >= 2.32.5", + "requests >= 2.33.0", "xmltodict >= 1.0.2", ] diff --git a/requirements.txt b/requirements.txt index c34c9a855..bba3ee574 100644 --- a/requirements.txt +++ b/requirements.txt @@ -8,7 +8,7 @@ pydash==8.0.6 PyJWT==2.12.0 python-dateutil==2.9.0.post0 PyYAML==6.0.3 -requests==2.32.5 +requests==2.33.0 xmltodict==1.0.2 # Development & Testing Tools diff --git a/setup.py b/setup.py index aa5141c2a..d97861ba1 100644 --- a/setup.py +++ b/setup.py @@ -43,7 +43,7 @@ "PyJWT >= 2.12.0", "python-dateutil >= 2.9.0.post0", "PyYAML >= 6.0.3", - "requests >= 2.32.5", + "requests >= 2.33.0", "xmltodict >= 1.0.2", ]