From 4082e325ebd3b0234ff9958d87b48b20dab61bcb Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 10 Jun 2024 22:50:24 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CRYPTOGRAPHY-7161587 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6043904 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6514866 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867 - https://snyk.io/vuln/SNYK-PYTHON-SQLPARSE-6615674 --- requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements.txt b/requirements.txt index b5eb0df4bf3..329503b8a62 100644 --- a/requirements.txt +++ b/requirements.txt @@ -36,11 +36,11 @@ mysqlclient==2.1.1 openpyxl==3.1.2 Pillow==10.3.0 # required by django-imagekit psycopg2-binary==2.9.9 -cryptography==42.0.7 +cryptography==42.0.8 python-dateutil==2.9.0.post0 pytz==2024.1 redis==5.0.4 -requests==2.31.0 +requests==2.32.0 sqlalchemy==2.0.30 # Required by Celery broker transport urllib3==1.26.18 uWSGI==2.0.25.1