Bump nltk from <= 3.6.3 to ~> 3.6.4

ml4ai / automates

AutoMATES: Automated Model Assembly from Text, Equations, and Software

https://ml4ai.github.io/automates

Other

25 stars 9 forks source link

Bump nltk from <= 3.6.3 to ~> 3.6.4 #264

Closed cl4yton closed 2 years ago

cl4yton commented 2 years ago

Could someone who knows how we use nltk see what is involved to bump it up to at least 3.6.4?

CVE-2021-3828 High severity

maxaalexeeva commented 2 years ago

@dpdicken this would require the image rebuild, right? @cl4yton it looks like nltk is only used by code crawler . Do you know if that code is now used? If not, is this bump urgent? If yes, should the person who uses it bump it to make sure nothing breaks with the new version?

cl4yton commented 2 years ago

This issue is supplanted by PR #303