Skip to content

feat(DEVC-2097): upgrade urllib3 & redis + fix MAX_RETRY_COUNT [SDK VERSION 2.0] #120

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
kossman merged 6 commits into from
Jan 15, 2026
Merged

feat(DEVC-2097): upgrade urllib3 & redis + fix MAX_RETRY_COUNT [SDK VERSION 2.0] #120

kossman merged 6 commits into from
Jan 15, 2026

Conversation

@kossman
Copy link
Contributor

@kossman kossman commented Jan 14, 2026
edited
Loading

Rationale

Improve security + small fix for SETTINGS

Changes

Security:

  • Upgraded internal dependency urllib3 to version urllib3 >= 2.6.3, <3.0.0 since 2.5.0 has these vulnerabilities
  • Upgraded internal dependency redis to version redis >=7.1.0, <8.0.0
  • ⚠️ Bumped a supported SDK runtime version to minimum 3.10 since new redis lib drops support for 3.9 ⚠️
    Fix:
  • Fixed issue with MAX_RETRY_COUNT

DEVC-2097

Note

Release 2.0.4

  • Security: relax and bump urllib3 to >=2.6.3,<3.0.0 (was ==2.5.0).
  • Config fix: add robust validator for MAX_RETRY_COUNT in src/corva/configuration.py that normalizes input, defaults to 3 on invalid values, and logs a warning; introduce DEFAULT_MAX_RETRY_COUNT and MaxRetryValidator.
  • Versioning/Docs: bump version to 2.0.4 in pyproject.toml and src/version.py; update CHANGELOG.md; update Antora docs version/tag in docs/antora.yml and docs/antora-playbook.yml.

Written by Cursor Bugbot for commit 0d98cf3. Configure here.

@kossman kossman self-assigned this Jan 14, 2026
@kossman kossman requested a review from corva-alex-s January 14, 2026 12:48
@kossman kossman marked this pull request as ready for review January 14, 2026 12:48
@kossman kossman changed the title feat(DEVC-2097): upgrade urllib3 + fix MAX_RETRY_COUNT feat(DEVC-2097): upgrade urllib3 + fix MAX_RETRY_COUNT [SDK VERSION 2.0] Jan 15, 2026
@kossman kossman changed the title feat(DEVC-2097): upgrade urllib3 + fix MAX_RETRY_COUNT [SDK VERSION 2.0] feat(DEVC-2097): upgrade urllib3 & redis + fix MAX_RETRY_COUNT [SDK VERSION 2.0] Jan 15, 2026
@kossman kossman requested a review from corva-alex-s January 15, 2026 10:41
@kossman kossman merged commit f4ec43d into master Jan 15, 2026
12 checks passed
@kossman kossman deleted the chore/upgrade-urllib3-dependency branch January 15, 2026 13:45
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@corva-alex-s corva-alex-s corva-alex-s approved these changes

Assignees

@kossman kossman

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@kossman @corva-alex-s