Skip to content

Commit

Permalink
fix: requirements.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-5798483
- https://snyk.io/vuln/SNYK-PYTHON-AIOPIKA-5880689
- https://snyk.io/vuln/SNYK-PYTHON-GEVENT-5906371
- https://snyk.io/vuln/SNYK-PYTHON-JOBLIB-3027033
- https://snyk.io/vuln/SNYK-PYTHON-NLTK-5926697
- https://snyk.io/vuln/SNYK-PYTHON-NLTK-5926698
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970
- https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878
- https://snyk.io/vuln/SNYK-PYTHON-RASA-5665551
- https://snyk.io/vuln/SNYK-PYTHON-REDIS-5291195
- https://snyk.io/vuln/SNYK-PYTHON-SANIC-2404810
- https://snyk.io/vuln/SNYK-PYTHON-SANIC-5500163
- https://snyk.io/vuln/SNYK-PYTHON-SENTRYSDK-3367401
- https://snyk.io/vuln/SNYK-PYTHON-SENTRYSDK-5812122
- https://snyk.io/vuln/SNYK-PYTHON-STARLETTE-3319937
- https://snyk.io/vuln/SNYK-PYTHON-STARLETTE-5538332
- https://snyk.io/vuln/SNYK-PYTHON-TRANSFORMERS-5563628
- https://snyk.io/vuln/SNYK-PYTHON-UJSON-2359034
- https://snyk.io/vuln/SNYK-PYTHON-UJSON-2940619
- https://snyk.io/vuln/SNYK-PYTHON-UJSON-2942122
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-5926907
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-3319935
- https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-3319936
  • Loading branch information
@snyk-bot
snyk-bot committed Oct 11, 2023
1 parent 0bf9ef8 commit 9570bba
Showing 1 changed file with 16 additions and 5 deletions.
21 changes: 16 additions & 5 deletions requirements.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -22,7 +22,7 @@ validators==0.20.0
secure
password-strength==0.0.3.post2
loguru
transformers==4.23.0
transformers==4.30.0
smart-config==0.1.3
moto==3.1.18
botocore==1.23.23
Expand All @@ -41,15 +41,15 @@ cryptography
pyparsing==2.4.7
nlpaug
websockets==10.1
aiohttp==3.8.0
aiohttp==3.8.5
networkx==2.6
fastapi_sso
pytest-httpx==0.15.0
json2html
numpy==1.22.0
numpy==1.22.2
protobuf==3.20.2
google-api-python-client
nltk==3.6.6
nltk==3.8.1
blinker
jira
zenpy==2.0.36
Expand All @@ -70,7 +70,7 @@ boto3==1.26.100
APScheduler
croniter
faiss-cpu
urllib3==1.26.15
urllib3==1.26.17
pytest-metadata==2.0.4
tiktoken
RestrictedPython
Expand All @@ -80,3 +80,14 @@ timeout-decorator
anyio==3.7.1
pytest-aioresponses
aiohttp-retry
aio-pika>=9.1.5 # not directly required, pinned by Snyk to avoid a vulnerability
gevent>=23.9.0 # not directly required, pinned by Snyk to avoid a vulnerability
joblib>=1.1.1 # not directly required, pinned by Snyk to avoid a vulnerability
pillow>=10.0.1 # not directly required, pinned by Snyk to avoid a vulnerability
rasa>=3.5.6 # not directly required, pinned by Snyk to avoid a vulnerability
redis>=4.3.6 # not directly required, pinned by Snyk to avoid a vulnerability
sanic>=20.12.6 # not directly required, pinned by Snyk to avoid a vulnerability
sentry-sdk>=1.14.0 # not directly required, pinned by Snyk to avoid a vulnerability
starlette>=0.27.0 # not directly required, pinned by Snyk to avoid a vulnerability
ujson>=5.4.0 # not directly required, pinned by Snyk to avoid a vulnerability
werkzeug>=2.2.3 # not directly required, pinned by Snyk to avoid a vulnerability

0 comments on commit 9570bba

Please sign in to comment.