From f98887cacc0d0371d544c6fe3c8e8efb0f7e225b Mon Sep 17 00:00:00 2001 From: snyk-bot <snyk-bot@snyk.io> Date: Wed, 22 May 2024 13:47:08 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867 --- requirements.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 9f1ee14..c222b20 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,4 +6,5 @@ gnutools-python mpi4py six bson -chardet \ No newline at end of file +chardet +requests>=2.32.0 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file