Skip to content

Commit

Permalink
fix: leaktopus_backend/requirements.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6036192
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6035177
  • Loading branch information
@snyk-bot
snyk-bot committed Oct 26, 2023
1 parent bfd6258 commit 0cf3005
Showing 1 changed file with 2 additions and 2 deletions.
4 changes: 2 additions & 2 deletions leaktopus_backend/requirements.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -2,7 +2,7 @@ jinja2<3.1.0
Flask==1.1.2
itsdangerous==2.0.1
# Flask_Caching==1.9.0
Werkzeug==1.0.1
Werkzeug==3.0.1
flask_debugtoolbar==0.11.0
# flask_mail==0.9.1
# flask_static_digest==0.2.1
Expand All @@ -28,7 +28,7 @@ elasticsearch==7.17.4
GitPython
truffleHog==2.2.1
pyjwt>=2.4.0 # not directly required, pinned to avoid a vulnerability
cryptography==39
cryptography==41.0.5

# Documentation libs
flasgger==0.9.5
Expand Down

0 comments on commit 0cf3005

Please sign in to comment.