Commit 3afd898
committed
fix: require aiohttp>=3.13.5 to resolve CVE-2026-22815
Durable replacement for the lockfile-only bump on production (03d6bc4):
a version floor in pyproject.toml survives stlc regeneration, whereas
raw uv.lock changes conflict on every rebuild.1 parent 3cee290 commit 3afd898
2 files changed
Lines changed: 282 additions & 134 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
41 | 41 | | |
42 | 42 | | |
43 | 43 | | |
44 | | - | |
| 44 | + | |
45 | 45 | | |
46 | 46 | | |
47 | 47 | | |
| |||
0 commit comments