CaROS/meta-openembedded
3
1
Fork 0
mirror of git://git.openembedded.org/meta-openembedded synced 2026-01-01 13:58:06 +00:00
Code Issues Packages Projects Releases Wiki Activity
6cc3c31ed6
meta-openembedded/meta-python/recipes-devtools/python/python3-flask_3.1.2.bb
Gyorgy Sarvari 039970deb2
python3-flask: set CVE_PRODUCT 
The default python:flask CPE doesn't match relevant CVE entries which are
tracked under palletsprojects:flask CPE.

See CVE db query:
sqlite> select * from products where PRODUCT like 'flask';
CVE-2018-1000656|palletsprojects|flask|||0.12.3|<
CVE-2019-1010083|palletsprojects|flask|||1.0|<
CVE-2023-30861|palletsprojects|flask|||2.2.5|<
CVE-2023-30861|palletsprojects|flask|2.3.0|>=|2.3.2|<

Set the CVE_PRODUCT to "flask" so it matches relevant entries.

Signed-off-by: Gyorgy Sarvari <skandigraun@gmail.com>
Signed-off-by: Khem Raj <raj.khem@gmail.com>
2025-12-31 08:28:55 -08:00

29 lines
773 B
BlitzBasic
Raw Blame History

This file contains ambiguous Unicode characters

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

SUMMARY = "A microframework based on Werkzeug, Jinja2 and good intentions"
DESCRIPTION = "\
Flask is a microframework for Python based on Werkzeug, Jinja 2 and good \
intentions. And before you ask: Its BSD licensed!"
HOMEPAGE = "https://github.com/pallets/flask"
LICENSE = "BSD-3-Clause"
LIC_FILES_CHKSUM = "file://LICENSE.txt;md5=ffeffa59c90c9c4a033c7574f8f3fb75"
SRC_URI[sha256sum] = "bf656c15c80190ed628ad08cdfd3aaa35beb087855e2f494910aa3774cc4fd87"
CVE_PRODUCT = "flask"
inherit pypi python_flit_core ptest-python-pytest
CLEANBROKEN = "1"
RDEPENDS:${PN} = " \
python3-blinker \
python3-click \
python3-importlib-metadata \
python3-itsdangerous \
python3-jinja2 \
python3-werkzeug \
"
RDEPENDS:${PN}-ptest += "\
python3-asgiref \
"
Reference in New Issue View Git Blame Copy Permalink