Skip to content
This repository has been archived by the owner on Jul 16, 2024. It is now read-only.

Commit

Permalink
fix: requirements/base.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-1584144
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-5798483
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6057352
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6057353
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091623
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209406
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209407
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3172287
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3314966
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3315324
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3315328
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3315331
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3315452
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3315972
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3315975
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3316038
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-3316211
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5663682
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5777683
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813745
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813746
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5813750
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-5914629
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6036192
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6050294
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6092044
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6126975
- https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-6210214
- https://snyk.io/vuln/SNYK-PYTHON-FLASK-5490129
- https://snyk.io/vuln/SNYK-PYTHON-FLASKAPPBUILDER-2388976
- https://snyk.io/vuln/SNYK-PYTHON-FLASKAPPBUILDER-2433100
- https://snyk.io/vuln/SNYK-PYTHON-FLASKAPPBUILDER-2964179
- https://snyk.io/vuln/SNYK-PYTHON-FLASKAPPBUILDER-5417249
- https://snyk.io/vuln/SNYK-PYTHON-FLASKAPPBUILDER-5734228
- https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6150717
- https://snyk.io/vuln/SNYK-PYTHON-MAKO-3017600
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970
- https://snyk.io/vuln/SNYK-PYTHON-PYARROW-6052811
- https://snyk.io/vuln/SNYK-PYTHON-PYJWT-2840625
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-3319935
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-3319936
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6035177
  • Loading branch information
@snyk-bot
snyk-bot committed Feb 2, 2024
1 parent 2cd8054 commit 351af68
Showing 1 changed file with 11 additions and 10 deletions.
21 changes: 11 additions & 10 deletions requirements/base.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -7,7 +7,7 @@
#
-e file:.
# via -r requirements/base.in
aiohttp==3.7.4.post0
aiohttp==3.9.2
# via slackclient
alembic==1.6.5
# via flask-migrate
Expand Down Expand Up @@ -54,7 +54,7 @@ cron-descriptor==1.2.24
# via apache-superset
croniter==1.0.15
# via apache-superset
cryptography==3.4.7
cryptography==42.0.2
# via apache-superset
defusedxml==0.7.1
# via python3-openid
Expand All @@ -64,7 +64,7 @@ dnspython==2.1.0
# via email-validator
email-validator==1.1.3
# via flask-appbuilder
flask==1.1.4
flask==2.2.5
# via
# apache-superset
# flask-appbuilder
Expand All @@ -77,7 +77,7 @@ flask==1.1.4
# flask-openid
# flask-sqlalchemy
# flask-wtf
flask-appbuilder==3.4.1
flask-appbuilder==4.3.2
# via apache-superset
flask-babel==1.0.0
# via flask-appbuilder
Expand Down Expand Up @@ -126,7 +126,7 @@ itsdangerous==1.1.0
# apache-superset
# flask
# flask-wtf
jinja2==2.11.3
jinja2==3.1.3
# via
# flask
# flask-babel
Expand All @@ -136,7 +136,7 @@ kombu==4.6.11
# via celery
korean-lunar-calendar==0.2.1
# via holidays
mako==1.1.4
mako==1.2.2
# via alembic
markdown==3.3.4
# via apache-superset
Expand All @@ -160,7 +160,7 @@ multidict==5.1.0
# via
# aiohttp
# yarl
numpy==1.21.1
numpy==1.22.2
# via
# pandas
# pyarrow
Expand All @@ -178,11 +178,11 @@ polyline==1.4.0
# via apache-superset
prison==0.2.1
# via flask-appbuilder
pyarrow==5.0.0
pyarrow==14.0.1
# via apache-superset
pycparser==2.20
# via cffi
pyjwt==1.7.1
pyjwt==2.4.0
# via
# apache-superset
# flask-appbuilder
Expand Down Expand Up @@ -277,7 +277,7 @@ vine==1.3.0
# celery
webencodings==0.5.1
# via bleach
werkzeug==1.0.1
werkzeug==2.3.8
# via
# flask
# flask-jwt-extended
Expand All @@ -295,3 +295,4 @@ zipp==3.4.1

# The following packages are considered to be unsafe in a requirements file:
# setuptools
setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability

0 comments on commit 351af68

Please sign in to comment.