Update dependencies to fix safety check failures

travis-newby commented 1 year ago

Update dependencies causing safety check to fail. There were two dependencies updated:

Pillow was updated to a version that is not susceptible to DoS (9.3.0). Pillow was previously pinned, so I left it as a pinned dependency; there are upcoming breaking changes specified in the release notes, so this seems like a safe choice. There are some new deprecations, but I didn't see any current breaking changes in the release notes.
Certifi was updated to a version that removes TrustCor certificates from the root store. (>= 2022.12.07).

During this process, setuptools was upgraded automatically. That takes care of a potential DoS issue.

Finally, I removed the nb-black dev dependency. It's not being used, and it doesn't play nice with poetry on certain Mac devices.

travis-newby commented 1 year ago

I'd like to do a bit more testing before merging, but I first wanted to see if this resolved issues we saw in the checks.

github-actions[bot] commented 1 year ago

Score Deployed! Find it here:

github-actions[bot] commented 1 year ago

Map Deployed! Map with Staging Backend: https://screeningtool.geoplatform.gov/en?flags=stage_hash=2142/af52e2ed231091b3017ef627546716e8d678f7d4 Find tiles here: https://justice40-data.s3.amazonaws.com/data-pipeline-staging/2142/af52e2ed231091b3017ef627546716e8d678f7d4/data/score/tiles

github-actions[bot] commented 1 year ago

Score Deployed! Find it here:

github-actions[bot] commented 1 year ago

Map Deployed! Map with Staging Backend: https://screeningtool.geoplatform.gov/en?flags=stage_hash=2142/7e0a3375022470101d109d0d12198e0c36fca1d1 Find tiles here: https://justice40-data.s3.amazonaws.com/data-pipeline-staging/2142/7e0a3375022470101d109d0d12198e0c36fca1d1/data/score/tiles

travis-newby commented 1 year ago

Spot checked around the map. Everything looks good. 🚀

usds / justice40-tool