revert dependencies

[wjblanke]

DO NOT MERGE

[socket-security]

New, updated, and removed dependencies detected. Learn more about Socket for GitHub ↗︎

Package	New capabilities	Transitives	Size	Publisher
pypi/aiohttp@3.10.4	environment, eval, filesystem, network, shell, unsafe	+367	1.12 GB	Andrew.Svetlov, Dreamsorcerer, bdraco, ...2 more
pypi/bitarray@2.8.2 🔁 pypi/bitarray@3.0.0	eval, filesystem, unsafe	0	1.32 MB	ilanschnell
pypi/bitstring@4.1.4	None	0	705 kB	sgriffiths
pypi/botocore@1.36.6 🔁 pypi/botocore@1.35.90	None	0	0 B
pypi/build@1.2.1	Transitive: environment, eval, filesystem, network, shell, unsafe	+236	1 GB	FFY00, gaborbernat, henryiii, ...1 more
pypi/click@8.1.7	None	+108	255 MB
pypi/clvm-tools@0.4.9	None	0	89.8 kB	chia-network
pypi/cryptography@43.0.1 🔁 pypi/cryptography@43.0.3	None	+106	277 MB	reaperhulk
pypi/dnspython@2.6.1	environment, eval, filesystem, network, shell, unsafe	+270	1.14 GB	rthalley
pypi/jinja2@3.1.4 🔁 pypi/jinja2@3.1.5	None	+104	254 MB
pypi/lxml@5.2.2	environment, eval, filesystem, network, shell, unsafe	+232	1.03 GB	faassen, scoder, zope.wineggbuilder
pypi/mypy@1.11.1	environment, eval, filesystem, network, shell, unsafe	+238	1.02 GB	ambv, guido, hauntsaninja, ...8 more
pypi/packaging@24.0	Transitive: environment, eval, filesystem, network, shell, unsafe	+236	1.01 GB	brettcannon, dstufft, pf_moore, ...1 more
pypi/pip@24.2	Transitive: environment, eval, filesystem, network, shell, unsafe	+281	1.07 GB	acsbidoul, dstufft, pf_moore, ...3 more
pypi/pre-commit@3.7.1 🔁 pypi/pre-commit@4.0.1	None	0	345 kB	asottile
pypi/pyinstaller-hooks-contrib@2024.7 🔁 pypi/pyinstaller-hooks-contrib@2024.11	environment, eval, filesystem	0	598 kB	Legorooj, bjones, htgoebel, ...1 more
pypi/pyinstaller@6.9.0	environment, eval, filesystem, network, shell, unsafe	+283	1.09 GB	Legorooj, bwoodsend
pypi/pytest-cov@5.0.0	None	0	237 kB	ionel
pypi/pytest@8.3.3	environment, eval, filesystem, network, shell, unsafe	+120	267 MB	The_Compiler, anatoly, flub, ...4 more
pypi/s3transfer@0.11.2 🔁 pypi/s3transfer@0.10.1	None	0	799 kB	aws
pypi/setproctitle@1.3.3	environment, filesystem, shell, unsafe	0	156 kB	piro
pypi/virtualenv@20.24.5 🔁 pypi/virtualenv@20.26.6	Transitive: unsafe	+283	1.07 GB	gaborbernat, pf_moore
pypi/watchdog@4.0.1	environment, filesystem, shell, unsafe	0	544 kB	T2, blag, danilo.bellini, ...2 more
pypi/yarl@1.9.4 🔁 pypi/yarl@1.18.3	environment Transitive: eval, filesystem, network, shell, unsafe	+281	1.06 GB	Andrew.Svetlov, webknjaz

🚮 Removed packages: pypi/anyio@4.7.0, pypi/boto3@1.35.90, pypi/chia-rs@0.18.0, pypi/coverage@7.6.9, pypi/filelock@3.16.1, pypi/ruff@0.8.5, pypi/types-setuptools@75.6.0.20241126

View full report↗︎

[socket-security]

Report is too large to display inline.
View full report↗︎

Next steps

Mark a package as acceptable risk

To ignore an alert, reply with a comment starting with @SocketSecurity ignore followed by a space separated list of ecosystem/package-name@version specifiers. e.g. @SocketSecurity ignore npm/foo@1.0.0 or ignore all packages with @SocketSecurity ignore-all

• @SocketSecurity ignore pypi/setproctitle@1.3.3
• @SocketSecurity ignore pypi/bitstring@4.1.4
• @SocketSecurity ignore pypi/dnspython@2.6.1
• @SocketSecurity ignore pypi/lxml@5.2.2
• @SocketSecurity ignore pypi/watchdog@4.0.1
• @SocketSecurity ignore pypi/pyinstaller@6.9.0
• @SocketSecurity ignore pypi/mypy@1.11.1
• @SocketSecurity ignore pypi/aiohttp@3.10.4
• @SocketSecurity ignore pypi/pre-commit@3.7.1
• @SocketSecurity ignore pypi/yarl@1.9.4
• @SocketSecurity ignore pypi/pyinstaller-hooks-contrib@2024.7
• @SocketSecurity ignore pypi/bitarray@2.8.2