From f404349acbad5e069026a9a567f828cc849460db Mon Sep 17 00:00:00 2001
From: Daniele Masato <5366115+doloopuntil@users.noreply.github.com>
Date: Fri, 6 Jan 2023 23:49:36 +0000
Subject: [PATCH 1/2] Update radon dependency from 4.x to 5.x

---
 pyproject.toml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pyproject.toml b/pyproject.toml
index e24fe325..33f3b8c2 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -21,7 +21,7 @@ classifiers = [
 ]
 requires = [
     "gitpython>=3.0.0,<4.0.0",
-    "radon>=4.0.0,<4.1.0",
+    "radon>=5.1,<5.2",
     "click>=7.0,<9.0",
     "nbformat>=5.1.3,<6.0.0",
     "colorlog>=4.0.0,<5.0.0",

From 83245cf32e5090764607ffbaa9fc567e5efb54b6 Mon Sep 17 00:00:00 2001
From: Daniele Masato <5366115+doloopuntil@users.noreply.github.com>
Date: Sat, 7 Jan 2023 09:52:40 +0000
Subject: [PATCH 2/2] Upgrade safety to 2.3.4 to address LegacyVersion removal
 from packaging and pytest to 7.2 to address ReDoS vulnerability

See https://github.com/pyupio/safety/blob/main/CHANGELOG.md#234---2022-12-07
See https://github.com/pytest-dev/py/issues/287#issuecomment-1290407715
---
 pyproject.toml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/pyproject.toml b/pyproject.toml
index 33f3b8c2..89fb8c2b 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -35,7 +35,7 @@ description-file = "README.md"
 
 [tool.flit.metadata.requires-extra]
 test = [
-    "pytest~=7.1.2",
+    "pytest~=7.2",
     "pytest-cov~=3.0.0",
 ]
 dev = [
@@ -50,7 +50,7 @@ dev = [
     "mypy~=0.961",
     "pydocstyle~=6.1.1",
     "pyupgrade~=2.37.1",
-    "safety~=2.1.0",
+    "safety~=2.3.4",
 ]
 # TODO: move here proper deps from `docs/requirements_docs.txt`
 doc = []