Closed Atomic-Germ closed 2 months ago
Can you give me some more context on why this is necessary? Fine with adding it if I have a little more info. otherwise like to leave things looser
This is only intended to keep the version numbers above the given versions, so we could also use >= probably. The reason for them is that both are requirements for requirements, and they use insecure versions themselves currently. This would be removable at a later date.
That said, I'm not sure security needs to be the biggest concern with this particular project!
ah I see. lemme think about this one and get back to ya :)
Thinking its not needed but perhaps it would be nice to have this loosely pinned somewhere. Only concern I have is having them be too high of versions here, which could cause issues. Worth checking colab's versions, etc.
pin
to avoid ReDoS