From b46313cd0b4590e4f1922aaad2e95a57b83bb1fc Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 9 Aug 2024 12:19:23 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250 - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- requirements.txt | 2 ++ 1 file changed, 2 insertions(+) diff --git a/requirements.txt b/requirements.txt index e56afcf..aa2c1a2 100644 --- a/requirements.txt +++ b/requirements.txt @@ -12,3 +12,5 @@ pytest-cov pytest-mock requests-mock alchemy-logging>=1.0.3 +urllib3>=2.2.2 # not directly required, pinned by Snyk to avoid a vulnerability +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability