From ee58da2f107428b9b3b07f7046f646e7d799b4c4 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 10 Jul 2024 07:05:00 +0000 Subject: [PATCH] fix: test-requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- test-requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/test-requirements.txt b/test-requirements.txt index 3b5dae2c9..0f606039d 100644 --- a/test-requirements.txt +++ b/test-requirements.txt @@ -4,3 +4,4 @@ pytest-xdist coverage # Pin urllib3 to the version which does not depend on appengine urllib3<1.27,>=1.21.1 +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability