Update base.txt

[wangsha]

security fix CVE-2018-18074 More information moderate severity Vulnerable versions: <= 2.19.1 Patched version: 2.20.0 The Requests package through 2.19.1 before 2018-09-14 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover credentials by sniffing the network.

[coveralls]

Coverage remained the same at 100.0% when pulling ab41e66a688c69604768462f51385736535c8fbb on wangsha:master into 24d14fc694146479bf30373e2e22603eaea73a16 on orcasgit:master.

[brad]

Thank you for your contribution :shipit:

[wangsha]

you are welcome. looking forward to a new release.