Closed Bug 1247994 Opened 5 years ago Closed 5 years ago

Upgrade vendored requests Python package

Categories

(Firefox Build System :: General, defect)

defect
Not set
normal

Tracking

(firefox47 fixed)

RESOLVED FIXED
mozilla47
Tracking Status
firefox47 --- fixed

People

(Reporter: gps, Assigned: gps)

Details

Attachments

(1 file)

We currently have version 2.5.1 of the "requests" Python package vendored in tree. There are a number of bug fixes in the latest version, including CVE-2015-2296. We should upgrade.

https://treeherder.mozilla.org/#/jobs?repo=try&revision=f915d1799171 indicates that automation was happy with 2.9.1. Will submit a rubber stamp patch shortly...
Previously, we We were running version 2.5.1 of requests. Newer
versions have several bug fixes and even address a CVE.

Source was obtained from
https://pypi.python.org/packages/source/r/requests/requests-2.9.1.tar.gz
and checked in without modification. This should be a rubber stamp
review.

Review commit: https://reviewboard.mozilla.org/r/34801/diff/#index_header
See other reviews: https://reviewboard.mozilla.org/r/34801/
Attachment #8718924 - Flags: review?(mshal)
Comment on attachment 8718924 [details]
MozReview Request: Bug 1247994 - Upgrade vendored requests package to 2.9.1; r?mshal

https://reviewboard.mozilla.org/r/34801/#review31703
Attachment #8718924 - Flags: review?(mshal) → review+
https://hg.mozilla.org/mozilla-central/rev/8e7ae3dc7387
Status: ASSIGNED → RESOLVED
Closed: 5 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla47
Product: Core → Firefox Build System
You need to log in before you can comment on or make changes to this bug.