Skip to content

Commit dee2c85

Browse files
galkleinmangalkleinman
committed
chore(deps): various vulnerabilities resolution
1 parent 50be41d commit dee2c85

File tree

17 files changed

+1522
-1099
lines changed

17 files changed

+1522
-1099
lines changed

packages/opentelemetry-instrumentation-anthropic/poetry.lock

Lines changed: 7 additions & 6 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

packages/opentelemetry-instrumentation-anthropic/pyproject.toml

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -28,6 +28,9 @@ opentelemetry-api = "^1.28.0"
2828
opentelemetry-instrumentation = ">=0.50b0"
2929
opentelemetry-semantic-conventions = ">=0.50b0"
3030
opentelemetry-semantic-conventions-ai = "^0.4.12"
31+
# Security constraints for transitive dependencies
32+
aiohttp = "^3.12.14"
33+
protobuf = "^5.29.5"
3134

3235
[tool.poetry.group.dev.dependencies]
3336
autopep8 = "^2.2.0"
@@ -36,7 +39,7 @@ pytest = "^8.2.2"
3639
pytest-sugar = "1.0.0"
3740

3841
[tool.poetry.group.test.dependencies]
39-
anthropic = {extras = ["bedrock"], version = ">=0.36.0"}
42+
anthropic = {extras = ["bedrock"], version = ">=0.64.0"}
4043
pytest = "^8.2.2"
4144
pytest-sugar = "1.0.0"
4245
vcrpy = "^6.0.1"

packages/opentelemetry-instrumentation-bedrock/poetry.lock

Lines changed: 9 additions & 9 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

packages/opentelemetry-instrumentation-bedrock/pyproject.toml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -28,7 +28,7 @@ opentelemetry-api = "^1.28.0"
2828
opentelemetry-instrumentation = ">=0.50b0"
2929
opentelemetry-semantic-conventions = ">=0.50b0"
3030
opentelemetry-semantic-conventions-ai = "^0.4.12"
31-
anthropic = ">=0.17.0"
31+
anthropic = ">=0.64.0"
3232
tokenizers = ">=0.13.0"
3333

3434
[tool.poetry.group.dev.dependencies]

packages/opentelemetry-instrumentation-langchain/poetry.lock

Lines changed: 377 additions & 308 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

packages/opentelemetry-instrumentation-langchain/pyproject.toml

Lines changed: 4 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -28,6 +28,9 @@ opentelemetry-api = "^1.28.0"
2828
opentelemetry-instrumentation = ">=0.50b0"
2929
opentelemetry-semantic-conventions = ">=0.50b0"
3030
opentelemetry-semantic-conventions-ai = "^0.4.12"
31+
# Security constraints for transitive dependencies
32+
aiohttp = "^3.12.14"
33+
protobuf = "^5.29.5"
3134

3235
[tool.poetry.group.dev.dependencies]
3336
autopep8 = "^2.3.1"
@@ -49,7 +52,7 @@ opentelemetry-sdk = "^1.27.0"
4952
opentelemetry-instrumentation-openai = { path = "../opentelemetry-instrumentation-openai", develop = true }
5053
opentelemetry-instrumentation-bedrock = { path = "../opentelemetry-instrumentation-bedrock", develop = true }
5154
text-generation = "^0.7.0"
52-
anthropic = "^0.51.0"
55+
anthropic = "^0.64.0"
5356
boto3 = "^1.35.49"
5457
langchain-anthropic = "^0.3.13"
5558
langchain-aws = "^0.2.11"

0 commit comments

Comments
 (0)