From 38a439b9d964b3ea5f858cead31210c51921b60f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 25 Apr 2024 03:30:12 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-BOTTLE-2855277 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-5805047 - https://snyk.io/vuln/SNYK-PYTHON-FLASK-5490129 - https://snyk.io/vuln/SNYK-PYTHON-IDNA-6597975 - https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6150717 - https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-5750273 - https://snyk.io/vuln/SNYK-PYTHON-PYMDOWNEXTENSIONS-5537103 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-5926907 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-6002459 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-3319935 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-3319936 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6035177 --- requirements.txt | 20 ++++++++++---------- 1 file changed, 10 insertions(+), 10 deletions(-) diff --git a/requirements.txt b/requirements.txt index 937bea0..56ac0f5 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,31 +1,31 @@ -bottle==0.12.19 -certifi==2021.10.8 +bottle==0.12.20 +certifi==2023.7.22 charset-normalizer==2.0.6 click==8.0.3 coverage==6.0.1 #doorstop==2.1.4 doorstop==2.2b5 et-xmlfile==1.1.0 -Flask==2.0.2 +Flask==2.2.5 httplib2==0.20.1 -idna==3.2 +idna==3.7 itsdangerous==2.0.1 jdcal==1.4.1 jinja-markdown==1.210911 -Jinja2==3.0.2 +Jinja2==3.1.3 Markdown==3.3.4 MarkupSafe==2.0.1 openpyxl==2.6.4 plantuml==0.3.0 plantuml-markdown==3.4.3 pyficache==0.3.2 -Pygments==2.10.0 -pymdown-extensions==9.0 +Pygments==2.15.0 +pymdown-extensions==10.0 pyparsing==2.4.7 pystache==0.5.4 python-markdown-math==0.6 PyYAML==5.4.1 -requests==2.26.0 +requests==2.31.0 six==1.16.0 -urllib3==1.26.7 -Werkzeug==2.0.2 \ No newline at end of file +urllib3==1.26.18 +Werkzeug==2.3.8 \ No newline at end of file