fix(sec): upgrade asteval to 0.9.23

numenta / nupic-legacy

Numenta Platform for Intelligent Computing is an implementation of Hierarchical Temporal Memory (HTM), a theory of intelligence based strictly on the neuroscience of the neocortex.

http://numenta.org/

GNU Affero General Public License v3.0

6.33k stars 1.56k forks source link

fix(sec): upgrade asteval to 0.9.23 #3902

Closed pen4 closed 1 year ago

pen4 commented 1 year ago

What happened？

There are 1 security vulnerabilities found in asteval 0.9.1

MPS-2022-14748

What did I do？

Upgrade asteval from 0.9.1 to 0.9.23 for vulnerability fix

What did you expect to happen？

Ideally, no insecure libs should be used.

The specification of the pull request

PR Specification from OSCS Signed-off-by:pen4948453219@qq.com