From a3688fcc135e322c1c7bd4bbc3cbb167e537f97f Mon Sep 17 00:00:00 2001 From: "dependabot[bot]" <49699333+dependabot[bot]@users.noreply.github.com> Date: Wed, 27 May 2026 19:07:25 +0000 Subject: [PATCH] deps(deps): bump the protocols group across 1 directory with 7 updates Bumps the protocols group with 7 updates in the / directory: | Package | From | To | | --- | --- | --- | | [requests](https://github.com/psf/requests) | `2.33.0` | `2.34.2` | | [websocket-client](https://github.com/websocket-client/websocket-client) | `1.8.0` | `1.9.0` | | [websockets](https://github.com/python-websockets/websockets) | `12.0` | `16.0` | | [paramiko](https://github.com/paramiko/paramiko) | `4.0.0` | `5.0.0` | | [paho-mqtt](https://github.com/eclipse/paho.mqtt.python) | `1.6.1` | `2.1.0` | | [kafka-python](https://github.com/dpkp/kafka-python) | `2.0.2` | `2.3.1` | | [pika](https://github.com/pika/pika) | `1.3.2` | `1.4.1` | Updates `requests` from 2.33.0 to 2.34.2 - [Release notes](https://github.com/psf/requests/releases) - [Changelog](https://github.com/psf/requests/blob/main/HISTORY.md) - [Commits](https://github.com/psf/requests/compare/v2.33.0...v2.34.2) Updates `websocket-client` from 1.8.0 to 1.9.0 - [Release notes](https://github.com/websocket-client/websocket-client/releases) - [Changelog](https://github.com/websocket-client/websocket-client/blob/master/ChangeLog) - [Commits](https://github.com/websocket-client/websocket-client/compare/v1.8.0...v1.9.0) Updates `websockets` from 12.0 to 16.0 - [Release notes](https://github.com/python-websockets/websockets/releases) - [Commits](https://github.com/python-websockets/websockets/compare/12.0...16.0) Updates `paramiko` from 4.0.0 to 5.0.0 - [Commits](https://github.com/paramiko/paramiko/compare/4.0.0...5.0.0) Updates `paho-mqtt` from 1.6.1 to 2.1.0 - [Release notes](https://github.com/eclipse/paho.mqtt.python/releases) - [Changelog](https://github.com/eclipse-paho/paho.mqtt.python/blob/master/ChangeLog.txt) - [Commits](https://github.com/eclipse/paho.mqtt.python/compare/v1.6.1...v2.1.0) Updates `kafka-python` from 2.0.2 to 2.3.1 - [Release notes](https://github.com/dpkp/kafka-python/releases) - [Changelog](https://github.com/dpkp/kafka-python/blob/master/docs/changelog.rst) - [Commits](https://github.com/dpkp/kafka-python/compare/2.0.2...2.3.1) Updates `pika` from 1.3.2 to 1.4.1 - [Release notes](https://github.com/pika/pika/releases) - [Changelog](https://github.com/pika/pika/blob/1.4.1/CHANGELOG.md) - [Commits](https://github.com/pika/pika/compare/1.3.2...1.4.1) --- updated-dependencies: - dependency-name: kafka-python dependency-version: 2.3.1 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: protocols - dependency-name: paho-mqtt dependency-version: 2.1.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: protocols - dependency-name: paramiko dependency-version: 5.0.0 dependency-type: direct:production update-type: version-update:semver-major dependency-group: protocols - dependency-name: pika dependency-version: 1.4.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: protocols - dependency-name: requests dependency-version: 2.34.2 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: protocols - dependency-name: websocket-client dependency-version: 1.9.0 dependency-type: direct:production update-type: version-update:semver-minor dependency-group: protocols - dependency-name: websockets dependency-version: '16.0' dependency-type: direct:production update-type: version-update:semver-major dependency-group: protocols ... Signed-off-by: dependabot[bot] --- config/requirements.txt | 14 +++++++------- requirements/base.txt | 6 +++--- requirements/system.txt | 8 ++++---- 3 files changed, 14 insertions(+), 14 deletions(-) diff --git a/config/requirements.txt b/config/requirements.txt index 2e5bbe8..10a2fc0 100644 --- a/config/requirements.txt +++ b/config/requirements.txt @@ -21,7 +21,7 @@ allure-pytest>=2.13.5 # [稳定层] Allure 报告 playwright==1.59.0 # [稳定层] major 升级 dependabot 已锁 # ===== [稳定层] API 测试 ===== -requests==2.33.0 # [稳定层](修 CVE-2026-25645 extract_zipped_paths Insecure Temp File,2.32.4 仅修 netrc/verify) +requests==2.34.2 # [稳定层](修 CVE-2026-25645 extract_zipped_paths Insecure Temp File,2.32.4 仅修 netrc/verify) # ===== [稳定层] 性能测试 ===== locust==2.43.4 # [稳定层] 备用 Python 压测 @@ -70,8 +70,8 @@ python-pptx==0.6.23 # [稳定层] PPTX 报告 + PRD pptx 输入 # ===== [可选] 移动端(10-移动测试)===== Appium-Python-Client==5.3.1 # [可选] Android/iOS 自动化 selenium==4.43.0 # [可选] WebDriver 协议 -websocket-client==1.8.0 # [稳定层] 同步 WebSocket(小程序协议 + EXE WS 测试)—— 1.8 兼容 selenium 4.43 (~=1.8) -websockets==12.0 # [稳定层] 异步 WebSocket(高并发性能测试) +websocket-client==1.9.0 # [稳定层] 同步 WebSocket(小程序协议 + EXE WS 测试)—— 1.8 兼容 selenium 4.43 (~=1.8) +websockets==16.0 # [稳定层] 异步 WebSocket(高并发性能测试) # ===== [可选] 桌面(11-桌面测试)===== # pywinauto==0.6.8 # [可选] 仅 Windows @@ -90,13 +90,13 @@ Pillow==12.2.0 # [可选] 图像(11→12.2 修 CVE-2026-25 # paddleocr==2.7.0.3 # [可选] 备选 OCR(重,按需启用) # ===== [可选] 系统集成(13-系统集成测试)===== -paramiko==4.0.0 # [可选] SSH(修 CVE-2026-44405 RSA SHA-1 algorithm,3.x 不修) +paramiko==5.0.0 # [可选] SSH(修 CVE-2026-44405 RSA SHA-1 algorithm,3.x 不修) pyserial==3.5 # [可选] 串口 -paho-mqtt==1.6.1 # [可选] MQTT +paho-mqtt==2.1.0 # [可选] MQTT # pymodbus==3.5.4 # [可选] Modbus 工业协议 ffmpeg-python==0.2.0 # [可选] FFmpeg 命令封装(外部需装 ffmpeg) -kafka-python==2.0.2 # [可选] Kafka -pika==1.3.2 # [可选] RabbitMQ +kafka-python==2.3.1 # [可选] Kafka +pika==1.4.1 # [可选] RabbitMQ # ===== [可选] AI/ML(14-AI模型测试)===== scikit-learn==1.5.2 # [可选] 模型评估(修 GHSA data leakage) diff --git a/requirements/base.txt b/requirements/base.txt index 8992cef..c9afb57 100644 --- a/requirements/base.txt +++ b/requirements/base.txt @@ -16,7 +16,7 @@ pytest-bdd==7.0.0 playwright==1.59.0 # API 测试 -requests==2.33.0 +requests==2.34.2 # 测试数据工厂 faker==20.1.0 @@ -54,8 +54,8 @@ bandit==1.7.6 safety==3.0.1 # WebSocket(通用) -websocket-client==1.8.0 -websockets==12.0 +websocket-client==1.9.0 +websockets==16.0 # 进程/系统 psutil==5.9.6 diff --git a/requirements/system.txt b/requirements/system.txt index 1d67294..a44d1c3 100644 --- a/requirements/system.txt +++ b/requirements/system.txt @@ -2,12 +2,12 @@ # 安装: pip install -r requirements/system.txt -r base.txt -paramiko==4.0.0 +paramiko==5.0.0 pyserial==3.5 -paho-mqtt==1.6.1 +paho-mqtt==2.1.0 ffmpeg-python==0.2.0 -kafka-python==2.0.2 -pika==1.3.2 +kafka-python==2.3.1 +pika==1.4.1 # pymodbus==3.5.4 # Modbus 工业协议 # web3==6.15.1 # 以太坊/EVM # slither-analyzer==0.10.0 # 需 solc