From 5ca7d6000789791f4fd1dff9bde6eefc43abe09f Mon Sep 17 00:00:00 2001
From: James <jameskr97@gmail.com>
Date: Sun, 8 Jan 2023 05:50:44 -0500
Subject: [PATCH] Update CHANGELOG.md and poetry libraries

---
 CHANGELOG.md   |  7 ++++++-
 poetry.lock    | 35 ++++++++++++++++-------------------
 pyproject.toml |  4 ++--
 3 files changed, 24 insertions(+), 22 deletions(-)

diff --git a/CHANGELOG.md b/CHANGELOG.md
index 525de93..ec7b34d 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -4,7 +4,12 @@ All notable changes to this project will be documented in this file.
 The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/),
 and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
 
-## [Unreleased]
+## [0.4.2] - 2023-01-08
+### Fixed
+- `redis` image switched to `bitnami/redis` as this allows use of a `REDIS_PASSWORD` environment variable
+- A password has been added to redis. This previously allowed anybody to access the redis instance, and send commands which would prevent proper functionality.
+- `SymCache` has been removed in favor of a local cache which exists inside each `crashserver-worker` instance.
+
 ### Added
 - Authorized users may now upload symbols via a web interface
 
diff --git a/poetry.lock b/poetry.lock
index a48b6f3..efbaffa 100644
--- a/poetry.lock
+++ b/poetry.lock
@@ -364,21 +364,21 @@ idna = ">=2.0.0"
 
 [[package]]
 name = "flask"
-version = "2.2.2"
+version = "2.1.3"
 description = "A simple framework for building complex web applications."
 category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
-    {file = "Flask-2.2.2-py3-none-any.whl", hash = "sha256:b9c46cc36662a7949f34b52d8ec7bb59c0d74ba08ba6cb9ce9adc1d8676d9526"},
-    {file = "Flask-2.2.2.tar.gz", hash = "sha256:642c450d19c4ad482f96729bd2a8f6d32554aa1e231f4f6b4e7e5264b16cca2b"},
+    {file = "Flask-2.1.3-py3-none-any.whl", hash = "sha256:9013281a7402ad527f8fd56375164f3aa021ecfaff89bfe3825346c24f87e04c"},
+    {file = "Flask-2.1.3.tar.gz", hash = "sha256:15972e5017df0575c3d6c090ba168b6db90259e620ac8d7ea813a396bad5b6cb"},
 ]
 
 [package.dependencies]
 click = ">=8.0"
 itsdangerous = ">=2.0"
 Jinja2 = ">=3.0"
-Werkzeug = ">=2.2.2"
+Werkzeug = ">=2.0"
 
 [package.extras]
 async = ["asgiref (>=3.2)"]
@@ -407,14 +407,14 @@ dev = ["Pallets-Sphinx-Themes", "bumpversion", "ghp-import", "pytest", "pytest-m
 
 [[package]]
 name = "flask-debugtoolbar"
-version = "0.11.0"
+version = "0.13.1"
 description = "A toolbar overlay for debugging Flask applications."
 category = "main"
 optional = false
-python-versions = "*"
+python-versions = ">=2.7"
 files = [
-    {file = "Flask-DebugToolbar-0.11.0.tar.gz", hash = "sha256:3c4e79d354ede014e6657c545a536d4fb273cc89e3fd6b4835b02e346dd3aab4"},
-    {file = "Flask_DebugToolbar-0.11.0-py2.py3-none-any.whl", hash = "sha256:0e9a80d4c599233c68376e81cc99976200b5ac5248cfb24f18935cc5b69ac5b3"},
+    {file = "Flask-DebugToolbar-0.13.1.tar.gz", hash = "sha256:0c26aa013a9813b8886857bf0ec24d28ab494114a264baf06c951cadc4dd0dae"},
+    {file = "Flask_DebugToolbar-0.13.1-py3-none-any.whl", hash = "sha256:491c737f321830c06a2835784acf1fc8488fd257a0ef318810b3b6bed5f600d5"},
 ]
 
 [package.dependencies]
@@ -1136,14 +1136,14 @@ files = [
 
 [[package]]
 name = "redis"
-version = "4.4.0"
+version = "4.4.1"
 description = "Python client for Redis database and key-value store"
 category = "main"
 optional = false
 python-versions = ">=3.7"
 files = [
-    {file = "redis-4.4.0-py3-none-any.whl", hash = "sha256:cae3ee5d1f57d8caf534cd8764edf3163c77e073bdd74b6f54a87ffafdc5e7d9"},
-    {file = "redis-4.4.0.tar.gz", hash = "sha256:7b8c87d19c45d3f1271b124858d2a5c13160c4e74d4835e28273400fa34d5228"},
+    {file = "redis-4.4.1-py3-none-any.whl", hash = "sha256:a721fd4d715fcd947848ed8fa02c2efd8224279979e0b721d9fdac6c4db35e93"},
+    {file = "redis-4.4.1.tar.gz", hash = "sha256:f7a870c44868ab87bbecd6211c6d7c8720b1e9a796b743fbc4725d7ec75651c3"},
 ]
 
 [package.dependencies]
@@ -1398,19 +1398,16 @@ socks = ["PySocks (>=1.5.6,!=1.5.7,<2.0)"]
 
 [[package]]
 name = "werkzeug"
-version = "2.2.2"
+version = "2.0.1"
 description = "The comprehensive WSGI web application library."
 category = "main"
 optional = false
-python-versions = ">=3.7"
+python-versions = ">=3.6"
 files = [
-    {file = "Werkzeug-2.2.2-py3-none-any.whl", hash = "sha256:f979ab81f58d7318e064e99c4506445d60135ac5cd2e177a2de0089bfd4c9bd5"},
-    {file = "Werkzeug-2.2.2.tar.gz", hash = "sha256:7ea2d48322cc7c0f8b3a215ed73eabd7b5d75d0b50e31ab006286ccff9e00b8f"},
+    {file = "Werkzeug-2.0.1-py3-none-any.whl", hash = "sha256:6c1ec500dcdba0baa27600f6a22f6333d8b662d22027ff9f6202e3367413caa8"},
+    {file = "Werkzeug-2.0.1.tar.gz", hash = "sha256:1de1db30d010ff1af14a009224ec49ab2329ad2cde454c8a708130642d579c42"},
 ]
 
-[package.dependencies]
-MarkupSafe = ">=2.1.1"
-
 [package.extras]
 watchdog = ["watchdog"]
 
@@ -1599,4 +1596,4 @@ testing = ["coverage (>=5.0.3)", "zope.event", "zope.testing"]
 [metadata]
 lock-version = "2.0"
 python-versions = "^3.10.1"
-content-hash = "e364c2f9a6c2959118959d49dbd042ca7d7761fba2e86a0bcdabe6849ed481e3"
+content-hash = "b5dfe1ded849f3ab5a7a8f1cd15ff150403326601ad9c81c46ce81f5836d751a"
diff --git a/pyproject.toml b/pyproject.toml
index 58c43a4..11b11c7 100644
--- a/pyproject.toml
+++ b/pyproject.toml
@@ -18,7 +18,7 @@ click = "^8.0.1"
 dynaconf = "^3.1.5"
 email-validator = "^1.1.3"
 Flask-Babel = "^2.0.0"
-Flask-DebugToolbar = "^0.11.0"
+Flask-DebugToolbar = "^0.13.0"
 Flask-Limiter = "^1.4"
 Flask-Migrate = "^3.1.0"
 Flask = "^2.0.1"
@@ -37,7 +37,7 @@ rq = "^1.10.0"
 SQLAlchemy = "^1.4.22"
 SQLAlchemy_Utils = "^0.37.8"
 toml = "^0.10.2"
-Werkzeug = "^2.0.1"
+Werkzeug = "2.0.1"
 WTForms = "^2.3.3"
 
 [tool.poetry.dev-dependencies]