Addressed safety issues and issue with nltk version

andy-maier · andy-maier · commit e9675b931619 · 2026-02-26T11:03:38.000+01:00
Signed-off-by: Andreas Maier &lt;maiera@de.ibm.com&gt;
diff --git a/.safety-policy-develop.yml b/.safety-policy-develop.yml
@@ -36,6 +36,8 @@ security:
             reason: Fixed filelock version 3.20.1 requires Python>=3.10 and is used there
         84183:
             reason: Fixed filelock version 3.20.3 requires Python>=3.10 and is used there
+        84415:
+            reason: Fixed filelock version 3.20.3 requires Python>=3.10 and is used there
 
     # Continue with exit code 0 when vulnerabilities are found.
     continue-on-vulnerability-error: False
diff --git a/base-requirements.txt b/base-requirements.txt
@@ -8,4 +8,4 @@
 pip>=25.2
 setuptools>=78.1.1
 setuptools-scm[toml]>=9.2.0
-wheel>=0.41.3
+wheel>=0.46.2
diff --git a/changes/noissue.safety.fix.rst b/changes/noissue.safety.fix.rst
@@ -1 +1 @@
-Fixed safety issues up to 2026-02-11.
+Fixed safety issues up to 2026-02-26.
diff --git a/dev-requirements.txt b/dev-requirements.txt
@@ -7,7 +7,7 @@
 # PEP517 package builder, used in Makefile
 build>=1.0.0
 # build requires virtualenv.cli_run which was added in virtualenv 20.1
-virtualenv>=20.26.6
+virtualenv>=20.36.1
 pyproject-hooks>=1.1.0
 
 # six (only needed by packages that still support Python 2)
@@ -62,11 +62,11 @@ safety-schemas>=0.0.16
 dparse>=0.6.4
 ruamel.yaml>=0.17.21
 click>=8.0.2
-Authlib>=1.6.5
+Authlib>=1.6.6
 marshmallow>=3.26.2
 pydantic>=2.12.0
 pydantic_core>=2.41.1
-#safety 3.6.1 depends on typer>=0.16.0
+# safety 3.6.1 depends on typer>=0.16.0
 typer>=0.16.0
 typer-cli>=0.16.0
 typer-slim>=0.16.0
diff --git a/minimum-constraints-develop.txt b/minimum-constraints-develop.txt
@@ -14,7 +14,7 @@ six==1.16.0
 # PEP517 package builder, used in Makefile
 build==1.0.0
 # build requires virtualenv.cli_run which was added in virtualenv 20.1
-virtualenv==20.26.6
+virtualenv==20.36.1
 pyproject-hooks==1.1.0
 
 # Change log
@@ -49,7 +49,7 @@ safety-schemas==0.0.16
 dparse==0.6.4
 ruamel.yaml==0.17.21
 click==8.0.2
-Authlib==1.6.5
+Authlib==1.6.6
 marshmallow==3.26.2
 pydantic==2.12.0
 pydantic_core==2.41.1
@@ -187,7 +187,9 @@ MarkupSafe==2.0.0
 # nbconvert 7.2.10 depends on mistune<3 and >=2.0.3
 mistune==2.0.3
 nest-asyncio==1.5.4
-nltk==3.9.1
+# nltk 3.9.3 fixes CVE-2025-14009
+nltk==3.9.2; python_version == '3.9'
+nltk==3.9.3; python_version >= '3.10'
 # nose is used by older versions of notebook, e.g. 4.3.1
 nose==1.3.7
 pandocfilters==1.4.1
diff --git a/minimum-constraints-install.txt b/minimum-constraints-install.txt
@@ -11,7 +11,7 @@ pip==25.2
 setuptools==78.1.1
 # Note on not specifying 'setuptools-scm[toml]': Extras cannot be in constraints files
 setuptools-scm==9.2.0
-wheel==0.41.3
+wheel==0.46.2
 
 
 # Direct dependencies for install (must be consistent with requirements.txt)

Original file line number	Diff line number	Diff line change
`@@ -1 +1 @@`
`1`		`-Fixed safety issues up to 2026-02-11.`
	`1`	`+Fixed safety issues up to 2026-02-26.`