95 lines
2.5 KiB
Plaintext
95 lines
2.5 KiB
Plaintext
PyJWT==2.1.0
|
|
PyNaCl==1.4.0
|
|
aiodiscover==1.4.5
|
|
aiohttp==3.8.1
|
|
aiohttp_cors==0.7.0
|
|
astral==2.2
|
|
async-upnp-client==0.23.1
|
|
async_timeout==4.0.0
|
|
atomicwrites==1.4.0
|
|
attrs==21.2.0
|
|
awesomeversion==21.11.0
|
|
backports.zoneinfo;python_version<"3.9"
|
|
bcrypt==3.1.7
|
|
certifi>=2021.5.30
|
|
ciso8601==2.2.0
|
|
cryptography==35.0.0
|
|
emoji==1.5.0
|
|
hass-nabucasa==0.50.0
|
|
home-assistant-frontend==20211215.0
|
|
httpx==0.21.0
|
|
ifaddr==0.1.7
|
|
jinja2==3.0.3
|
|
paho-mqtt==1.6.1
|
|
pip>=8.0.3,<20.3
|
|
pyserial==3.5
|
|
python-slugify==4.0.1
|
|
pyudev==0.22.0
|
|
pyyaml==6.0
|
|
requests==2.26.0
|
|
scapy==2.4.5
|
|
sqlalchemy==1.4.27
|
|
voluptuous-serialize==2.4.0
|
|
voluptuous==0.12.2
|
|
yarl==1.6.3
|
|
zeroconf==0.37.0
|
|
|
|
# Constrain pillow to 8.2.0 because later versions are causing issues in nightly builds.
|
|
# https://github.com/home-assistant/core/issues/61756
|
|
pillow==8.2.0
|
|
|
|
# Constrain pycryptodome to avoid vulnerability
|
|
# see https://github.com/home-assistant/core/pull/16238
|
|
pycryptodome>=3.6.6
|
|
|
|
# Constrain urllib3 to ensure we deal with CVE-2020-26137 and CVE-2021-33503
|
|
urllib3>=1.26.5
|
|
|
|
# Constrain H11 to ensure we get a new enough version to support non-rfc line endings
|
|
h11>=0.12.0
|
|
|
|
# Constrain httplib2 to protect against GHSA-93xj-8mrv-444m
|
|
# https://github.com/advisories/GHSA-93xj-8mrv-444m
|
|
httplib2>=0.19.0
|
|
|
|
# gRPC 1.32+ currently causes issues on ARMv7, see:
|
|
# https://github.com/home-assistant/core/issues/40148
|
|
# Newer versions of some other libraries pin a higher version of grpcio,
|
|
# so those also need to be kept at an old version until the grpcio pin
|
|
# is reverted, see:
|
|
# https://github.com/home-assistant/core/issues/53427
|
|
grpcio==1.31.0
|
|
google-cloud-pubsub==2.1.0
|
|
google-api-core<=1.31.2
|
|
|
|
# This is a old unmaintained library and is replaced with pycryptodome
|
|
pycrypto==1000000000.0.0
|
|
|
|
# To remove reliance on typing
|
|
btlewrap>=0.0.10
|
|
|
|
# This overrides a built-in Python package
|
|
enum34==1000000000.0.0
|
|
typing==1000000000.0.0
|
|
uuid==1000000000.0.0
|
|
|
|
# Temporary constraint on pandas, to unblock 2021.7 releases
|
|
# until we have fixed the wheels builds for newer versions.
|
|
pandas==1.3.0
|
|
|
|
# regex causes segfault with version 2021.8.27
|
|
# https://bitbucket.org/mrabarnett/mrab-regex/issues/421/2021827-results-in-fatal-python-error
|
|
# This is fixed in 2021.8.28
|
|
regex==2021.8.28
|
|
|
|
# anyio has a bug that was fixed in 3.3.1
|
|
# can remove after httpx/httpcore updates its anyio version pin
|
|
anyio>=3.3.1
|
|
|
|
# websockets 10.0 is broken with AWS
|
|
# https://github.com/aaugustin/websockets/issues/1065
|
|
websockets==9.1
|
|
|
|
# pytest_asyncio breaks our test suite. We rely on pytest-aiohttp instead
|
|
pytest_asyncio==1000000000.0.0
|