GitHub Dependabot keeps bugging us about old, vulnerable Python packages. Until we figure out a way to make it calm, we're stuck updating our dependencies whenever it complains. I guess it's a good thing in the long run, though, right? Makes our CI a bit "more secure"... Signed-off-by: WangYuli <wangyuli@xxxxxxxxxxxxx> -- 2.45.2
