From a26d44d51379384f7683e70a07f57b495803f508 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 31 Oct 2023 04:27:15 +0000 Subject: [PATCH] fix: deps/uv/docs/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-BABEL-1278589 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-5805047 - https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-5750273 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1014645 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-5926907 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-6002459 --- deps/uv/docs/requirements.txt | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/deps/uv/docs/requirements.txt b/deps/uv/docs/requirements.txt index 8386e0178fabac..1ff90d1195b065 100644 --- a/deps/uv/docs/requirements.txt +++ b/deps/uv/docs/requirements.txt @@ -4,9 +4,9 @@ Sphinx==3.5.4 # dependencies alabaster==0.7.12 appdirs==1.4.3 -Babel==2.9.0 +Babel==2.9.1 CacheControl==0.12.6 -certifi==2019.11.28 +certifi==2023.7.22 chardet==3.0.4 colorama==0.4.3 contextlib2==0.6.0 @@ -24,11 +24,11 @@ msgpack==0.6.2 packaging==20.3 pep517==0.8.2 progress==1.5 -Pygments==2.8.1 +Pygments==2.15.0 pyparsing==2.4.6 pytoml==0.1.21 pytz==2021.1 -requests==2.22.0 +requests==2.31.0 retrying==1.3.3 six==1.14.0 snowballstemmer==2.1.0 @@ -38,5 +38,6 @@ sphinxcontrib-htmlhelp==1.0.3 sphinxcontrib-jsmath==1.0.1 sphinxcontrib-qthelp==1.0.3 sphinxcontrib-serializinghtml==1.1.4 -urllib3==1.25.8 +urllib3==1.26.18 webencodings==0.5.1 +setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability