# Version constraints for pip-installation.
#
# This file doesn't install any packages. It specifies version constraints
# that will be applied if a package is needed.
#
# When pinning something here, please provide an explanation of why.  Ideally,
# link to other information that will help people in the future to remove the
# pin when possible.  Writing an issue against the offending project and
# linking to it here is good.

# We're not ready for Celery 4 yet, but 3.1.25+ are forward-compatible with it.
# As of this writing, there's a 3.1.26.post2 with a very important bugfix
# (although it is advertised in the changelog as 3.1.26.)
celery>=3.1.25,<4.0.0

# Stay on the latest LTS release of Django
Django<2.3

# The CORS_ORIGIN_WHITELIST changes in a backwards incompatible way in 3.0.0, needs matching configuration repo changes
django-cors-headers<3.0.0

# It seems like django-countries > 5.5 may cause performance issues for us.
django-countries==5.5

# Removes deprecated get_ip function, which we still use (ARCHBOM-1329 for unpinning)
django-ipware<3.0.0

# 2.0.0 dropped support for Python 3.5
django-pipeline<2.0.0

# 1.0.0 currently causes an AttributeError that is under investigation: https://github.com/django-ses/django-ses/issues/186
django-ses==0.8.14

# django-storages version 1.9 drops support for boto storage backend.
django-storages<1.9

# Support was dropped for Python 3.5
drf-yasg<1.17.1

# drf-jwt 1.15.0 contains a migration that breaks on MySQL: https://github.com/Styria-Digital/django-rest-framework-jwt/issues/40
drf-jwt==1.14.0

# The team that owns this package will manually bump this package rather than having it pulled in automatically.
# This is to allow them to better control its deployment and to do it in a process that works better
# for them.
edx-enterprise==3.3.18

# Upgrading to 2.12.0 breaks several test classes due to API changes, need to update our code accordingly
factory-boy==2.8.1

# Newer versions need a more recent version of python-dateutil
freezegun==0.3.12

# When we went from httpretty 0.9.7 to 1.0.2, tests broke
httpretty<1.0

# 4.0.0 dropped support for Python 3.5
inflect<4.0.0

# 0.15.0 dropped support for Python 3.5
joblib<0.15.0

# jsonfield2 3.1.0 drops support for python 3.5
jsonfield2<3.1.0

# kiwisolver 1.2.0 requires Python 3.6+
kiwisolver<1.2.0

# 4.5.1 introduced a bug when used together with xmlsec: https://bugs.launchpad.net/lxml/+bug/1880251
# Tests passed, but hit a problem in stage
lxml<4.5.1

# Convert text markup to HTML; used in capa problems, forums, and course wikis; pin Markdown version as tests failed for its upgrade to the latest release
Markdown==2.6.11

# Matplotlib 3.1 requires Python 3.6
matplotlib<3.1

# mock version 4.0.0 drops support for python 3.5
mock<4.0.0

# oauthlib>3.0.1 causes test failures
oauthlib==3.0.1

# path 13.2.0 drops support for Python 3.5
path<13.2.0

# ARCHBOM-1141: pip-tools upgrade requires pip upgrade
pip-tools<5.0.0

# BOM-1430: pytest 5.4.0 breaks reporting sometimes: https://github.com/pytest-dev/pytest/issues/6925
pytest<5.4.0

# pytest-django 3.9.0 has a fix for pytest 5.4.0+ that breaks cleanup after failed tests in earlier pytest versions
# https://github.com/pytest-dev/pytest-django/issues/824
pytest-django<3.9.0

# Upgrading to 2.5.3 on 2020-01-03 triggered "'tzlocal' object has no attribute '_std_offset'" errors in production
python-dateutil==2.4.0

# stevedore 2.0.0 requires python >= 3.6
stevedore<2.0.0

# Constraint from astroid 2.3.3
wrapt==1.11.*

# zipp 2.0.0 requires Python >= 3.6
zipp==1.0.0

# Matplotlib 3.1 requires Python 3.6
matplotlib<3.1

# numpy 1.19 requires Python 3.6
numpy<1.19

# scipy 1.5 equires Python 3.6
scipy<1.5