Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

⬆️(dependencies) remove unneeded dependencies #503

Merged
merged 1 commit into from
Nov 5, 2024
Merged

⬆️(dependencies) remove unneeded dependencies #503

merged 1 commit into from
Nov 5, 2024

Conversation

Morendil
Copy link
Collaborator

@Morendil Morendil commented Nov 4, 2024
edited
Loading

Purpose

To reduce attack surface and dependency updates, remove listed dependencies that are not actually in use.

Proposal

Remove url-normalize which is not referenced anywhere

@Morendil Morendil force-pushed the remove-extra-deps branch 2 times, most recently from b0426b3 to 64c3688 Compare November 4, 2024 09:41
@Morendil Morendil marked this pull request as ready for review November 4, 2024 09:42
@qbey
Copy link
Collaborator

qbey commented Nov 4, 2024

boto3 is used by django-storages with S3
Brotli is used by whitenoise
url-normalize seems indeed not used anywhere :)

@Morendil
Copy link
Collaborator Author

Morendil commented Nov 4, 2024

To recap our quick in-person chat: for django-storages and whitenoise respectively, boto3 and Brotli are transitive dependencies but marked as optional, so we're leaving them in to ensure they're both picked up.

@Morendil
⬆️(dependencies) remove unneeded dependencies
839b8b1 
Remove url-normalize as it is not referenced anywhere
@Morendil Morendil merged commit b602478 into main Nov 5, 2024
20 checks passed
@Morendil Morendil deleted the remove-extra-deps branch November 5, 2024 15:41
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@mjeammet mjeammet mjeammet approved these changes

@sdemagny sdemagny Awaiting requested review from sdemagny

@sampaccoud sampaccoud Awaiting requested review from sampaccoud

@qbey qbey Awaiting requested review from qbey

Assignees
No one assigned
Labels
None yet
Projects
Docs - La Suite
Status: Done
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@Morendil @qbey @mjeammet