``rpaframework-recognition`` bump opencv-python-headless to 4.8.1 (security fix)

robocorp / rpaframework

Collection of open-source libraries and tools for Robotic Process Automation (RPA), designed to be used with both Robot Framework and Python

https://www.rpaframework.org/

Apache License 2.0

1.17k stars 225 forks source link

``rpaframework-recognition`` bump opencv-python-headless to 4.8.1 (security fix) #1105

Closed mikahanninen closed 1 year ago

mikahanninen commented 1 year ago

Github action daily installation tests there is a vulnerability report on Python 3.9.13 runs on each platform about opencv-python-headless package, which is coming from rpaframework-recognition package.

At the moment our version spec for the package is this "^4.5.2, <4.6.0" and the latest package version for that is 4.8.1.78

PYSEC-2023-184 CVE-2023-4863