Security Vulneratbility CVE-2022-40899 on future

[ornew]

REDoS Vulneratbility in Python Charmers Future
https://www.cve.org/CVERecord?id=CVE-2022-40899

Open issue with future: PythonCharmers/python-future#612

The last commit to future is 2019 so it's unlikely a patch will occur.
It would be preferable to remove this dependency if possible.

[mdeshmu]

This was addressed in PythonCharmers/python-future#610 and released in future lib version 0.18.3