Closed dennisjlee closed 1 year ago
Also blocked here. Currently building from source as a workaround,
pip install git+https://github.com/aws/aws-elastic-beanstalk-cli.git@9140d08
but would appreciate an official release.
@Mickeypeng thank you for your PR last month updating the requests
dependency. Would you be able to help us get a release out for this library please?
Updated the release to Pypi , resolving .
Description
The
requests
library recently had a vulnerability disclosed https://github.com/advisories/GHSA-j8r2-6x86-q33q, causing GitHub Dependabot to nag us.The dependency change in aws-elastic-beanstalk-cli has already been made (#410). Please make a new release to PyPi so that downstream users of aws-elastic-beanstalk-cli can upgrade requests.
Steps to reproduce
Try to install the latest version of awsebcli and requests in the same environment:
pip install awsebcli==3.20.6 requests==2.31.0
Observed result
Expected result
The packages should be compatible.
Additional environment details (Ex: Windows, Mac, Amazon Linux etc)