From 8e355c119d7787d8b90f56b45b343b3ce454a617 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 10 Jul 2024 08:53:54 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements.txt b/requirements.txt index 773415ab..9f39fb1c 100644 --- a/requirements.txt +++ b/requirements.txt @@ -17,3 +17,4 @@ redis==3.5.3; python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, requests==2.26.0 six==1.16.0; python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3' urllib3==1.26.7; python_version >= '2.7' and python_version not in '3.0, 3.1, 3.2, 3.3, 3.4' and python_version < '4' +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability