From 7214fffedc4ba4dad5808a7ef16befd57ec5b781 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 27 Jun 2025 00:15:34 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390193 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390194 --- requirements.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index a270e81f..0cad7409 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,4 +9,5 @@ oschmod==0.3.12 argparse==1.4.0 PyYAML==5.4.1 # library_name=yaml flask-swagger==0.2.14 # library_name=flask_swagger -flask-swagger-ui==3.36.0 # library_name=flask_swagger_ui \ No newline at end of file +flask-swagger-ui==3.36.0 # library_name=flask_swagger_ui +urllib3>=2.5.0 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file