Merged
Conversation
…with separate Flask-Limiter and limits[redis] dependencies to resolve packaging version conflicts
- Bumped versions for several packages including boto3, botocore, celery, certifi, click, cryptography, flask-security-too, Flask, greenlet, importlib-metadata, packaging, pydantic, pypdf, redis, setuptools, Shapely, SQLAlchemy, Unidecode, zipp, and qrcode. - Ensured compatibility with the latest versions to enhance security and performance.
There was a problem hiding this comment.
Pull Request Overview
Upgrades a range of dependencies to their latest versions and resolves a conflict with the Flask-Limiter package.
- Pins most libraries to newer patch or minor releases
- Removes Flask-Limiter’s Redis extra without pinning a version
- Introduces duplicate
setuptoolsentries
Comments suppressed due to low confidence (2)
requirements/main.txt:22
- Dropping the version pin and
[redis]extra for Flask-Limiter may break rate limiting functionality or allow unintentional upgrades. Re-pin to a tested version (e.g.,Flask-Limiter[redis]==3.12) or explicitly specify the required version.
Flask-Limiter
requirements/main.txt:90
- This
setuptools==80.9.0entry is duplicated (also at line 71). Remove the redundant line to avoid confusion and potential conflicts during installation.
setuptools==80.9.0
- Changed the openai-whisper dependency to use the latest version from the GitHub repository. - Added torch version 2.7.1 to the requirements for improved compatibility and performance.
- Added torch version 2.7.1rc1 to the optional dependencies to address security vulnerabilities (GHSA-887c-mr87-cxwp and GHSA-3749-ghw9-m3mg). This ensures compatibility and enhances the stability of the project.
tarekio
approved these changes
Jun 4, 2025
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Upgrades all bayanat deps, Fixes Flask-Limiter dependency conflict
Checklist
API Changes (if applicable)
Additional Notes
[Any other relevant information]