Newer
Older
# Version constraints for pip-installation.
#
# This file doesn't install any packages. It specifies version constraints
# that will be applied if a package is needed.
#
# When pinning something here, please provide an explanation of why. Ideally,
# link to other information that will help people in the future to remove the
# pin when possible. Writing an issue against the offending project and
# linking to it here is good.
# We're not ready for Celery 4 yet, but 3.1.25+ are forward-compatible with it.
# As of this writing, there's a 3.1.26.post2 with a very important bugfix
# (although it is advertised in the changelog as 3.1.26.)
celery>=3.1.25,<4.0.0
# Stay on the latest LTS release of Django
Django<2.3
# The CORS_ORIGIN_WHITELIST changes in a backwards incompatible way in 3.0.0, needs matching configuration repo changes
django-cors-headers<3.0.0
# It seems like django-countries > 5.5 may cause performance issues for us.
django-countries==5.5
# Removes deprecated get_ip function, which we still use (ARCHBOM-1329 for unpinning)
django-ipware<3.0.0
# 2.0.0 dropped support for Python 3.5
django-pipeline<2.0.0
# 1.0.0 currently causes an AttributeError that is under investigation: https://github.com/django-ses/django-ses/issues/186
django-ses==0.8.14
# django-storages version 1.9 drops support for boto storage backend.
django-storages<1.9
# Support was dropped for Python 3.5
drf-yasg<1.17.1
# The team that owns this package will manually bump this package rather than having it pulled in automatically.
# This is to allow them to better control its deployment and to do it in a process that works better
# for them.
# Upgrading to 2.12.0 breaks several test classes due to API changes, need to update our code accordingly
factory-boy==2.8.1
# Newer versions need a more recent version of python-dateutil
freezegun==0.3.12
# When we went from httpretty 0.9.7 to 1.0.2, tests broke
httpretty<1.0
# 4.0.0 dropped support for Python 3.5
inflect<4.0.0
# 5.0.0 dropped support for Python 3.5
isort<5.0.0
# 0.15.0 dropped support for Python 3.5
joblib<0.15.0
# jsonfield2 3.1.0 drops support for python 3.5
jsonfield2<3.1.0
# kiwisolver 1.2.0 requires Python 3.6+
kiwisolver<1.2.0
# 4.5.1 introduced a bug when used together with xmlsec: https://bugs.launchpad.net/lxml/+bug/1880251
# Tests passed, but hit a problem in stage
lxml<4.5.1
# Convert text markup to HTML; used in capa problems, forums, and course wikis; pin Markdown version as tests failed for its upgrade to the latest release
# Matplotlib 3.1 requires Python 3.6
matplotlib<3.1
# mock version 4.0.0 drops support for python 3.5
mock<4.0.0
# oauthlib>3.0.1 causes test failures
oauthlib==3.0.1
# path 13.2.0 drops support for Python 3.5
path<13.2.0
# ARCHBOM-1141: pip-tools upgrade requires pip upgrade
pip-tools<5.0.0
# BOM-1430: pytest 5.4.0 breaks reporting sometimes: https://github.com/pytest-dev/pytest/issues/6925
pytest<5.4.0
# pytest-django 3.9.0 has a fix for pytest 5.4.0+ that breaks cleanup after failed tests in earlier pytest versions
# https://github.com/pytest-dev/pytest-django/issues/824
pytest-django<3.9.0
# Upgrading to 2.5.3 on 2020-01-03 triggered "'tzlocal' object has no attribute '_std_offset'" errors in production
python-dateutil==2.4.0
# stevedore 2.0.0 requires python >= 3.6
stevedore<2.0.0
# Constraint from astroid 2.3.3
wrapt==1.11.*
# zipp 2.0.0 requires Python >= 3.6
zipp==1.0.0
# Matplotlib 3.1 requires Python 3.6
matplotlib<3.1
# numpy 1.19 requires Python 3.6
numpy<1.19
# scipy 1.5 equires Python 3.6
scipy<1.5