security: upgrade setuptools to >=78.1.1 to address CVE-2025-47273 and CVE-2024-6345 (#11038)

Co-authored-by: openhands <openhands@all-hands.dev> Co-authored-by: enyst <engel.nyst@gmail.com>
2025-12-26 05:48:36 +08:00 · 2025-09-22 00:05:45 -04:00 · 2025-09-22 00:05:45 -04:00 · 431d2c1f43
commit 431d2c1f43
parent 07f23641a3
2 changed files with 2 additions and 1 deletions
--- a/poetry.lock
+++ b/poetry.lock
@ -11887,4 +11887,4 @@ third-party-runtimes = ["daytona", "e2b-code-interpreter", "modal", "runloop-api
 [metadata]
 lock-version = "2.1"
 python-versions = "^3.12,<3.14"
-content-hash = "a0e4afdd7f066eeaf4c4a2ebddfd5bd676bebfeef1bd0c9a2d1ef9ac5be9f581"
+content-hash = "6f1c757233a5d2df1b17f11787b8ad29da98c12a28a07644bffb6fddf4618798"
--- a/pyproject.toml
+++ b/pyproject.toml
@ -90,6 +90,7 @@ pillow = "^11.3.0"
 starlette = "^0.48.0"
 urllib3 = "^2.5.0"
 requests = "^2.32.5"
+setuptools = ">=78.1.1"

 # TODO: These are integrations that should probably be optional
 redis = ">=5.2,<7.0"