github/langchain
1
0
Fork 0
mirror of https://github.com/hwchase17/langchain.git synced 2026-06-09 10:17:00 +00:00
Code Issues Packages Projects Releases Wiki Activity

chore(deps): bump pytest to 9.0.3 (#36801)

Browse Source 
CVE-2025-71176 (medium severity)

All are dev-only (test dependency group) — no impact on published
packages.

### Why syrupy was also bumped

syrupy 4.x (`<5.0.0`) constrains pytest to `<9.0.0`, blocking the CVE
fix. Widening to `<6.0.0` allows syrupy 5.x which supports pytest 9.x.
This commit is contained in:
Mason Daugherty
2026-04-15 21:46:40 -06:00
committed by GitHub
parent cbee5e042c
commit 7e81d09f2a
43 changed files with 558 additions and 398 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
libs/partners/chroma/pyproject.toml
View File

@@ -39,14 +39,14 @@ Reddit = "https://www.reddit.com/r/LangChain/"
[dependency-groups]
test = [
"pytest>=7.3.0,<8.0.0",
"pytest>=9.0.3,<10.0.0",
"pytest-mock>=3.10.0,<4.0.0",
"pytest-benchmark",
"pytest-watcher>=0.3.4,<1.0.0",
"pytest-asyncio>=0.21.1,<1.0.0",
"pytest-asyncio>=1.3.0,<2.0.0",
"pytest-socket>=0.7.0,<1.0.0",
"freezegun>=1.2.2,<2.0.0",
"syrupy>=4.0.2,<5.0.0",
"syrupy>=5.0.0,<6.0.0",
"langchain-core",
"langchain-tests",
]