orbit-oss/flask
4
4
Fork 2
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix(security): update vulnerable dependencies in celery example

Browse source 
Update pinned versions in examples/celery/requirements.txt to resolve
13 known security vulnerabilities (1 HIGH, 11 MEDIUM, 1 LOW):

- werkzeug 2.3.3 -> 3.1.6 (CVE-2024-34069, CVE-2023-46136, CVE-2024-49766, CVE-2024-49767, CVE-2025-66221, CVE-2026-21860, CVE-2026-27199)
- jinja2 3.1.2 -> 3.1.6 (CVE-2024-22195, CVE-2024-34064, CVE-2024-56201, CVE-2024-56326, CVE-2025-27516)
- flask 2.3.2 -> 3.1.3 (CVE-2026-27205)

Also bumps transitive deps for compatibility:
- blinker 1.6.2 -> 1.9.0
- itsdangerous 2.1.2 -> 2.2.0
- markupsafe 2.1.2 -> 3.0.3
This commit is contained in:
ahsan.sheraz 2026-04-10 18:09:08 +02:00
parent 2ac89889f4
commit 330fc07272
1 changed files with 6 additions and 6 deletions
Download patch file Download diff file Expand all files Collapse all files

12
examples/celery/requirements.txt
View file

@ -10,7 +10,7 @@ async-timeout==4.0.2
# via redis # via redis
billiard==3.6.4.0 billiard==3.6.4.0
# via celery # via celery
blinker==1.6.2 blinker==1.9.0
# via flask # via flask
celery[redis]==5.2.7 celery[redis]==5.2.7
# via flask-example-celery (pyproject.toml) # via flask-example-celery (pyproject.toml)
@ -27,15 +27,15 @@ click-plugins==1.1.1
# via celery # via celery
click-repl==0.2.0 click-repl==0.2.0
# via celery # via celery
flask==2.3.2 flask==3.1.3
# via flask-example-celery (pyproject.toml) # via flask-example-celery (pyproject.toml)
itsdangerous==2.1.2 itsdangerous==2.2.0
# via flask # via flask
jinja2==3.1.2 jinja2==3.1.6
# via flask # via flask
kombu==5.2.4 kombu==5.2.4
# via celery # via celery
markupsafe==2.1.2 markupsafe==3.0.3
# via # via
# jinja2 # jinja2
# werkzeug # werkzeug
@ -54,5 +54,5 @@ vine==5.0.0
# kombu # kombu
wcwidth==0.2.6 wcwidth==0.2.6
# via prompt-toolkit # via prompt-toolkit
werkzeug==2.3.3 werkzeug==3.1.6
# via flask # via flask