Dependency security vuln fix (#51)

* updating django version * updating transitive dependency * trying overrides approach * removing pre-install script
capitalone · Dec 19, 2023 · 98f9a1b · 98f9a1b
1 parent efccb8b
commit 98f9a1b
Show file tree

Hide file tree

Showing 3 changed files with 7 additions and 2 deletions.
diff --git a/clients/javascript_client/package.json b/clients/javascript_client/package.json
@@ -39,5 +39,10 @@
     "lint": "eslint fma_connect --ignore-path .eslintignore --ext .ts --format table",
     "prepare": "cd ../../ && husky install clients/javascript_client/.husky",
     "test": "jest --coverage --passWithNoTests"
+  },
+  "overrides": {
+    "fetch-mock": {
+      "@babel/traverse": "7.23.2"
+    }
   }
 }
diff --git a/connectors/django/Pipfile b/connectors/django/Pipfile
@@ -13,7 +13,7 @@ pre-commit = "*"
 fma-core = {path = "./../../fma-core", editable = true}
 
 [packages]
-Django = "4.1.10"
+Django = "4.1.13"
 django-q = "1.3.9"
 django-mptt = "0.13.4"
 numpy = "1.22.2"

diff --git a/connectors/django/requirements.txt b/connectors/django/requirements.txt
@@ -1,4 +1,4 @@
-Django==4.1.10
+Django==4.1.13
 django-q==1.3.9
 django-mptt==0.13.4
 numpy==1.22.2