[Snyk] Upgrade serverless-python-requirements from 5.0.1 to 5.3.1

[snyk-bot]

Snyk has created this PR to upgrade serverless-python-requirements from 5.0.1 to 5.3.1.

ℹ️ Keep your dependencies up-to-date. This makes it easier to fix existing vulnerabilities and to more quickly identify and fix newly disclosed vulnerabilities when they affect your project.

---

• The recommended version is 7 versions ahead of your current version.
• The recommended version was released a month ago, on 2022-01-28.

The recommended version fixes:

Severity	Issue	PriorityScore (*)	Exploit Maturity
	Remote Code Execution (RCE) SNYK-JS-SHELLQUOTE-1766506	405/1000 Why? CVSS 8.1	No Known Exploit
	Prototype Pollution SNYK-JS-MINIMIST-559764	405/1000 Why? CVSS 8.1	Proof of Concept
	Denial of Service (DoS) SNYK-JS-JSZIP-1251497	405/1000 Why? CVSS 8.1	Proof of Concept

(*) Note that the real score may have changed since the PR was raised.

Release notes

Package name: serverless-python-requirements

• 5.3.1 - 2022-01-28
  

  Bug Fixes

  • Address unknown path format error in wsl2 (#667) (b16c82d) (Shinichi Makino)

  ---

  Comparison since last release

• 5.3.0 - 2022-01-06
  

  chore: Release v5.3.0

• 5.2.2 - 2021-12-03
  

  Bug Fixes

  • Ensure cast toString before trim on buffer (#656) (f60eed1) (Piotr Grzesik)

  ---

  Comparison since last release

• 5.2.1 - 2021-12-02
  

  Maintenance Improvements

  • Adapt plugin to modern logs (#646) (8ff97e6) (Piotr Grzesik)
  • Adapt to async version of spawn (#648) (50c2850) (Piotr Grzesik)
  • Adapt v3 log writing interfaces (#646) (a79899a) (Piotr Grzesik)
  • Ensure proper verbose progress logs (#646) (44b9591) (Piotr Grzesik)
  • Use ServerlessError (#649) (cdb7111) (Piotr Grzesik)

  Changelog

  All notable changes to this project will be documented in this file. See standard-version for commit guidelines.

  ---

  Comparison since last release

• 5.2.0 - 2021-11-18
  
  • feat: Introduce schema validation for module property (#641) @ rileypriddle
  • fix: Ignore functions defined with image @ pgrzesik
  • fix: Fix help output for requirements container command @ medikoo
  • chore: Register serverless as peer dependency @ medikoo
  • test: Pin dependencies to avoid unexpected upgrades @ pgrzesik
• 5.1.1 - 2021-04-01
  

  Changes:

  • Fixes to CI/CD
  • Fixes to Poetry support
  • Documentation cleanup
  • Update linting
  • Update dependencies
• 5.1.0 - 2020-02-19
  

  Changes:

  • Removes compatibility with pre-release poetry. (Minor version bump.)
  • Bump werkzeug version to address security issue.
  • Correct word splitting on pip commands.
  • circle CI is working again; much thanks to @ miketheman

  Known risks:

  • Windows CI is still down
• 5.0.1 - 2019-10-29
  

  fix support for package indvidually when using sls dashboard

from serverless-python-requirements GitHub release notes

Commit messages

Package name: serverless-python-requirements

• 1668cbc chore: Release v5.3.1
• b16c82d fix: Address unknown path format error in `wsl2` ([BUG] Example: aws-python-simple-http-endpoint, /ping endpoint doesn't work serverless/examples#667)
• 95c694f chore: Release v5.3.0
• 6730d7e chore: Update `serverless` peer dependency
• 406f6ba feat: Support requirements layer caching (added priority to examples serverless/examples#644)
• c480877 chore: Release v5.2.2
• f60eed1 fix: Ensure cast `toString` before `trim` on buffer
• e3d9ebc chore: Release v5.2.1
• 347245c chore: Add `standard-version` config
• 328cb01 feat: Add architecture to requirements cache directory name (fix: Compress images, and fix tables for cron example for ruby serverless/examples#645)
• 89b3bab chore: Remove Node16 tests
• 9b84abf chore: Remove dependabot
• 29f957d chore: Reformat with eslint & prettier
• 274b8e5 ci: Add commitlint job to CI
• f4d87b4 ci: Introduce new CI publish workflow
• 080b0ba ci: Introduce integrate CI workflow
• 1f0804c ci: Update validate CI workflow
• 8a4bc83 refactor: Use `ServerlessError` in `pip`
• 618ef76 refactor: Use `ServerlessError` in `pipenv`
• 3950827 refactor: Use `ServerlessError` in `poetry`
• cdb7111 refactor: Use `ServerlessError` in `docker`
• 9479a90 refactor: Cleanup and use `finally` for code simplification
• 44b9591 refactor: Ensure proper verbose progress logs
• d70ca21 refactor: Adapt `docker` for modern logs

Compare

---

Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open upgrade PRs.

For more information:

🧐 View latest project report

🛠 Adjust upgrade PR settings

🔕 Ignore this dependency or unsubscribe from future upgrade PRs