From 3911268c4ed746f303b43b0d701c4c1bd13617f9 Mon Sep 17 00:00:00 2001
From: John Estabrook <jestabro@vyos.io>
Date: Sun, 23 Apr 2023 20:14:32 -0500
Subject: http-api: T5176: update vyos-http-api-tools for FastAPI vulnerability

---
 requirements.in  |  2 +-
 requirements.txt | 61 ++++++++++++++++++++++++++++----------------------------
 2 files changed, 31 insertions(+), 32 deletions(-)

diff --git a/requirements.in b/requirements.in
index fb5a17b..b878b16 100644
--- a/requirements.in
+++ b/requirements.in
@@ -1,4 +1,4 @@
-fastapi
+fastapi==0.92.0
 python-multipart
 uvicorn[standard]
 wsproto
diff --git a/requirements.txt b/requirements.txt
index 56b25c7..dcd4e61 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -1,73 +1,72 @@
 #
-# This file is autogenerated by pip-compile with python 3.7
-# To update, run:
+# This file is autogenerated by pip-compile with Python 3.7
+# by the following command:
 #
 #    pip-compile requirements.in
 #
-anyio==3.4.0
-    # via starlette
-ariadne[asgi-file-uploads]==0.14.0
+anyio==3.6.2
+    # via
+    #   starlette
+    #   watchfiles
+ariadne[asgi-file-uploads]==0.19.1
     # via -r requirements.in
-asgiref==3.4.1
-    # via uvicorn
-click==8.0.3
+click==8.1.3
     # via uvicorn
-fastapi==0.70.0
+fastapi==0.92.0
     # via -r requirements.in
-graphql-core==3.1.6
+graphql-core==3.2.3
     # via
     #   ariadne
     #   sgqlc
-h11==0.12.0
+h11==0.14.0
     # via
     #   uvicorn
     #   wsproto
-httptools==0.2.0
+httptools==0.5.0
     # via uvicorn
-idna==3.3
+idna==3.4
     # via anyio
-importlib-metadata==4.8.2
+importlib-metadata==6.6.0
     # via click
-makefun==1.12.1
+makefun==1.15.1
     # via -r requirements.in
-pydantic==1.8.2
+pydantic==1.10.7
     # via fastapi
-python-dotenv==0.19.2
+python-dotenv==0.21.1
     # via uvicorn
-python-multipart==0.0.5
+python-multipart==0.0.6
     # via
     #   -r requirements.in
     #   ariadne
 pyyaml==6.0
     # via uvicorn
-sgqlc==14.1
+sgqlc==16.1
     # via -r requirements.in
-six==1.16.0
-    # via python-multipart
-sniffio==1.2.0
+sniffio==1.3.0
     # via anyio
-starlette==0.16.0
+starlette==0.25.0
     # via
     #   ariadne
     #   fastapi
-typing-extensions==4.0.1
+typing-extensions==4.5.0
     # via
     #   anyio
     #   ariadne
-    #   asgiref
+    #   graphql-core
+    #   h11
     #   importlib-metadata
     #   pydantic
     #   starlette
     #   uvicorn
-uvicorn[standard]==0.15.0
+uvicorn[standard]==0.21.1
     # via -r requirements.in
-uvloop==0.16.0
+uvloop==0.17.0
     # via uvicorn
-watchgod==0.7
+watchfiles==0.19.0
     # via uvicorn
-websockets==10.1
+websockets==11.0.2
     # via uvicorn
-wsproto==1.0.0
+wsproto==1.2.0
     # via -r requirements.in
-zipp==3.6.0
+zipp==3.15.0
     # via importlib-metadata
-- 
cgit v1.2.3


From 8b752f958176ca579cf780175b3f9ee3617ab481 Mon Sep 17 00:00:00 2001
From: John Estabrook <jestabro@vyos.io>
Date: Mon, 24 Apr 2023 11:28:42 -0500
Subject: http-api: T5176: update changelog; remove unneeded dependencies

---
 debian/changelog | 7 +++++++
 debian/control   | 1 -
 requirements.in  | 2 +-
 requirements.txt | 6 ++----
 4 files changed, 10 insertions(+), 6 deletions(-)

diff --git a/debian/changelog b/debian/changelog
index 47ccddf..8df230a 100644
--- a/debian/changelog
+++ b/debian/changelog
@@ -1,3 +1,10 @@
+vyos-http-api-tools (2.1) unstable; urgency=medium
+
+  * Update version of FastAPI to 0.92.0
+  * Drop unneeded dependencies
+
+ -- VyOS maintainers and contributors <maintainers@vyos.io>  Mon, 24 Apr 2023 11:31:52 -0500
+
 vyos-http-api-tools (0.2.0-1.1) unstable; urgency=medium
 
   * Add sgqlc
diff --git a/debian/control b/debian/control
index d746f76..b5c880b 100644
--- a/debian/control
+++ b/debian/control
@@ -7,7 +7,6 @@ Build-Depends: debhelper (>= 10),
   python3-setuptools,
   dh-virtualenv (>= 1.0),
   python3-pip,
-  python3-dev,
   python3-venv
 Standards-Version: 3.9.6
 
diff --git a/requirements.in b/requirements.in
index b878b16..ba8743a 100644
--- a/requirements.in
+++ b/requirements.in
@@ -2,6 +2,6 @@ fastapi==0.92.0
 python-multipart
 uvicorn[standard]
 wsproto
-ariadne[asgi-file-uploads]
+ariadne
 makefun
 sgqlc
diff --git a/requirements.txt b/requirements.txt
index dcd4e61..72224c8 100644
--- a/requirements.txt
+++ b/requirements.txt
@@ -8,7 +8,7 @@ anyio==3.6.2
     # via
     #   starlette
     #   watchfiles
-ariadne[asgi-file-uploads]==0.19.1
+ariadne==0.19.1
     # via -r requirements.in
 click==8.1.3
     # via uvicorn
@@ -35,9 +35,7 @@ pydantic==1.10.7
 python-dotenv==0.21.1
     # via uvicorn
 python-multipart==0.0.6
-    # via
-    #   -r requirements.in
-    #   ariadne
+    # via -r requirements.in
 pyyaml==6.0
     # via uvicorn
 sgqlc==16.1
-- 
cgit v1.2.3