Eric Brown

Python 3.7 no longer supported, so this issue is not applicable.

Maybe at least consider pointing to https://openai.com/policies/coordinated-vulnerability-disclosure-policy

> What are some places you would expect to find this in a library like this? `CONTRIBUTING.md`? Typically there is a security.md policy file you define as part of the...

I should also add that the Heroku docs state: "Anything that works with a standard pip requirements file will work as expected on Heroku." However, following that statement, it gives...

I guess this issue has come up several times in different forms: https://github.com/heroku/heroku-buildpack-python/pull/417 https://github.com/heroku/heroku-buildpack-python/pull/467 https://github.com/heroku/heroku-buildpack-python/pull/639 The only workaround I seem to have is hosting another python package index and using...

This link seems to provide a good option on how to modify heroku-buildpack-python to utilize and acceptlist and denylist for env vars. Maybe this would be a worthy consideration as...

I guess this would be the markdown equivalent of Reflex's callouts (https://reflex.dev/docs/library/datadisplay/callout/)

> I've compared the execution time to other PRs that don't use `uv` yet, but I don't find any significant improvement on the runtime of jobs. > > However, I...

Currently Reflex isn't using the latest version of Redis anyway. As of today, it uses version 5.0.4 (">=4.3.5,

For cases like this, I would recommend setting up [dependency-review-action](https://github.com/actions/dependency-review-action) to avoid accidentally including a lessor-permissive licensed dependency.