Upgrade setuptools to 78.1.1 to fix path traversal vulnerability in PackageIndex.download (#1165)

* fix #174 * npm audit fix
2025-09-09 22:34:05 +07:00 · 2025-08-05 00:55:53 +05:30
parent fbeb884f69
commit 9322b3ca74
2 changed files with 38 additions and 19 deletions
--- a/tests/data/pyproject.toml
+++ b/tests/data/pyproject.toml
@ -5,13 +5,13 @@ description = ""
 authors = ["Your Name <you@example.com>"]

 [tool.poetry.dependencies]
-python = ">=3.8,<3.14"
+python = ">=3.9,<3.14"
 flake8 = "^4.0.1"
 pyinstaller = "6.10.0"
-
+setuptools = ">=78.1.1" 

 [tool.poetry.dev-dependencies]

 [build-system]
 requires = ["poetry-core>=1.0.0"]
-build-backend = "poetry.core.masonry.api"
+build-backend = "poetry.core.masonry.api"