[Mlir-commits] [mlir] [mlir] [python] Update PyYAML minimum version to 5.4 (PR #102178)
Nhat Nguyen
llvmlistbot at llvm.org
Tue Aug 6 09:29:02 PDT 2024
https://github.com/nhat-nguyen created https://github.com/llvm/llvm-project/pull/102178
PyYAML 5.3.1 has a security vulnerability as described here: https://nvd.nist.gov/vuln/detail/CVE-2020-14343. Update the minimum PyYAML version to 5.4.
>From b343a11ccfbbaf3d3646d2111bb18d05bc146cca Mon Sep 17 00:00:00 2001
From: Nhat Nguyen <nhat-nguyen at users.noreply.github.com>
Date: Tue, 6 Aug 2024 12:28:00 -0400
Subject: [PATCH] Update requirements.txt
---
mlir/python/requirements.txt | 4 ++--
1 file changed, 2 insertions(+), 2 deletions(-)
diff --git a/mlir/python/requirements.txt b/mlir/python/requirements.txt
index 6ec63e43adf89..4d86dd2134e8e 100644
--- a/mlir/python/requirements.txt
+++ b/mlir/python/requirements.txt
@@ -1,4 +1,4 @@
numpy>=1.19.5, <=1.26
pybind11>=2.9.0, <=2.10.3
-PyYAML>=5.3.1, <=6.0.1
-ml_dtypes # provides several NumPy dtype extensions, including the bf16
\ No newline at end of file
+PyYAML>=5.4, <=6.0.1
+ml_dtypes # provides several NumPy dtype extensions, including the bf16
More information about the Mlir-commits
mailing list