[Snyk] Security upgrade starlette from 0.13.2 to 0.13.5 #34
Conversation
The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-STARLETTE-573266
|
Kudos, SonarCloud Quality Gate passed!
|
|
Code Climate has analyzed commit 22c7529 and detected 0 issues on this pull request. The test coverage on the diff in this pull request is 100.0% (50% is the threshold). This pull request will bring the total coverage in the repository to 99.4% (0.0% change). View more on Code Climate. |
Codecov Report
@@ Coverage Diff @@
## master #34 +/- ##
=======================================
Coverage 99.48% 99.48%
=======================================
Files 21 21
Lines 1163 1163
=======================================
Hits 1157 1157
Misses 6 6 Continue to review full report at Codecov.
|
|
fixed in #38 |
Snyk has created this PR to fix one or more vulnerable packages in the `pip` dependencies of this project.
Changes included in this PR
Vulnerabilities that will be fixed
By pinning:
SNYK-PYTHON-STARLETTE-573266
starlette:0.13.2 -> 0.13.5Some vulnerabilities couldn't be fully fixed and so Snyk will still find them when the project is tested again. This may be because the vulnerability existed within more than one direct dependency, but not all of the effected dependencies could be upgraded.
Check the changes in this PR to ensure they won't cause issues with your project.
Note: You are seeing this because you or someone else with access to this repository has authorized Snyk to open fix PRs.
For more information:
🧐 View latest project report
🛠 Adjust project settings
📚 Read more about Snyk's upgrade and patch logic