Skip to content

Commit

Permalink
fix: dev-requirements.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-3031740
- https://snyk.io/vuln/SNYK-PYTHON-WHEEL-3092128
  • Loading branch information
@snyk-bot
snyk-bot committed Nov 5, 2022
1 parent baecf1c commit 54dc515
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion dev-requirements.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -44,7 +44,7 @@ pandas==1.4.0
pathspec==0.9.0
platformdirs==2.4.1
pluggy==1.0.0
protobuf==3.19.4
protobuf==3.19.5
psycopg2-binary==2.9.3
py==1.11.0
py-cpuinfo==8.0.0
Expand Down Expand Up @@ -78,3 +78,4 @@ watchdog==2.1.6
Werkzeug==2.0.2
wrapt==1.13.3
zipp==3.7.0
wheel>=0.38.0 # not directly required, pinned by Snyk to avoid a vulnerability

0 comments on commit 54dc515

Please sign in to comment.