deps: bump setuptools to ^75.1.0

Versions of setuptools prior to 70.0.0 were vulnerable to a remote execution exploit documented in CVE-2024-6345-setuptools.
collerek · Sep 18, 2024 · ae0f5c3 · ae0f5c3
1 parent 4b6fc18
commit ae0f5c3
Show file tree

Hide file tree

Showing 2 changed files with 12 additions and 7 deletions.
diff --git a/poetry.lock b/poetry.lock
diff --git a/pyproject.toml b/pyproject.toml
@@ -55,6 +55,7 @@ asyncpg = { version = ">=0.28,<0.30", optional = true }
 psycopg2-binary = { version = "^2.9.1", optional = true }
 mysqlclient = { version = "^2.1.0", optional = true }
 PyMySQL = { version = "^1.1.0", optional = true }
+setuptools = "^75.1.0"
 
 
 [tool.poetry.dependencies.orjson]