From 576eca4cc51444eaf481f56cdf800a4732edab01 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 3 Dec 2021 18:36:21 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1014645 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index b322b1c..288e1fa 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,4 +1,4 @@ appdirs==1.4.* # dependency of FileCache beckett==0.8.* # main functionality requests==2.21.* # used by beckett (bumped to avoid CVE-2018-18074) -urllib3~=1.24.3 # used by requests (bumped to avoid CVE-2019-11236) +urllib3~=1.26.5 # used by requests (bumped to avoid CVE-2019-11236)