This repository has been archived by the owner on Feb 27, 2024. It is now read-only.
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Changes :
0.25.0
to0.27.0
0.95.2
for supporting starlette0.27.0
h11>=0.13.0
becausehttpcore 0.17.2
requiresh11<0.15
,>=0.13
request_body
to get the request body directly to allow non-JSON datatests/unit_tests/test_microservice.py
for passingContent-Type
astext/plain
For performing post requests with request body we must strictly pass headers with
Content-Type
astext/plain
for the request to work. This is to prevent CSRF in FastAPI as mentioned here tiangolo/fastapi#3456 and GHSA-8h2j-cgx8-6xv7To allow request Body to parse as non-JSON based on
media_type
the issue is ongoing in tiangolo/fastapi#9159Fixes #26
Fixes https://github.com/vmware-labs/build-inspector/security/dependabot/5