flower icon indicating copy to clipboard operation
flower copied to clipboard
verified publisher icon mher

Update tornado's lower bound to the earliest secure version

Open ulgens opened this issue 4 months ago • 2 comments

The latest release of the 5.x series was in 2018 and has never received a security update since then. The latest found security issue of the 6.x series is fixed in 6.5.0

Resolves:

  • https://github.com/mher/flower/issues/1439

Depends on:

  • https://github.com/mher/flower/pull/1463

I'll rebase the branch when #1463 is merged.

ulgens avatar Nov 09 '25 23:11 ulgens

@Nusnus 👋🏻

ulgens avatar Nov 10 '25 10:11 ulgens

@auvipy This PR needs some time before the review. If possible, can you please check https://github.com/mher/flower/pull/1462 first?

ulgens avatar Nov 10 '25 14:11 ulgens