Skip to content

bench: upgrade tornado to 5.1#1437

Open
fynntang wants to merge 1 commit into
nsqio:masterfrom
fynntang:oscs_fix_cffofioau51vtsb6vdc0
Open

bench: upgrade tornado to 5.1#1437
fynntang wants to merge 1 commit into
nsqio:masterfrom
fynntang:oscs_fix_cffofioau51vtsb6vdc0

Conversation

@fynntang

@fynntang fynntang commented Feb 5, 2023

Copy link
Copy Markdown

What happened?

There are 1 security vulnerabilities found in tornado 4.3

What did I do?

Upgrade tornado from 4.3 to 5.1 for vulnerability fix

What did you expect to happen?

Ideally, no insecure libs should be used.

The specification of the pull request

PR Specification from OSCS

@mreiferson

Copy link
Copy Markdown
Member

Thanks for the PR, but the benchmark tools are used in a very specific way that makes this low risk. Also, have you tested that it actually works with a major version upgrade of Tornado?

@mreiferson mreiferson changed the title fix(sec): upgrade tornado to 5.1 bench: upgrade tornado to 5.1 Feb 11, 2023
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants