+
Skip to content

Remove unmaintained and vulnerable pycrypto requirement #652

New issue
New issue
Open
Open
Remove unmaintained and vulnerable pycrypto requirement#652
Assignees
saito-hideki
Labels
ciThe issue is related to CI testsstable-1Issue or pull request for stable-1stable-2Issue or pull request for stable-2verifiedThis issue has been verified/reproduced by maintainer
@rwjack

Description

@rwjack
rwjack
opened on Jul 5, 2025

pycrypto is unmaintained and vulnerable: pycrypto/pycrypto#285

My CI builder fails it's security scan every month because of this single requirement in ansible.posix unit tests.

Found in code here: https://github.com/ansible-collections/ansible.posix/blame/cdb442ea4890558b75aa3b2bd8c4165455cfc44f/tests/unit/requirements.txt#L3

I am aware I could make an exclusion, but why not fix the issue at the source? (here I mean)

Metadata

Metadata

Assignees

Labels

ciThe issue is related to CI testsstable-1Issue or pull request for stable-1stable-2Issue or pull request for stable-2verifiedThis issue has been verified/reproduced by maintainer

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions
    点击 这是indexloc提供的php浏览器服务,不要输入任何密码和下载