From fe4e7826fe17e570b6cb8b2812d6c3e0602bce2f Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 5 Sep 2023 05:08:58 +0000 Subject: [PATCH] fix: {{cookiecutter.project_slug}}/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-5880505 --- {{cookiecutter.project_slug}}/requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/{{cookiecutter.project_slug}}/requirements.txt b/{{cookiecutter.project_slug}}/requirements.txt index 26a53c15..968bcd4a 100644 --- a/{{cookiecutter.project_slug}}/requirements.txt +++ b/{{cookiecutter.project_slug}}/requirements.txt @@ -471,3 +471,4 @@ yattag==1.14.0 # The following packages are considered to be unsafe in a requirements file: # pip # setuptools +django>=3.2.21 # not directly required, pinned by Snyk to avoid a vulnerability