From e42d9206981f44cd32817907941b40b43ec157a7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 24 Feb 2024 00:58:21 +0000 Subject: [PATCH] fix: deps/uv/docs/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-BABEL-1278589 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-5805047 - https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6150717 - https://snyk.io/vuln/SNYK-PYTHON-PYGMENTS-5750273 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1014645 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-5926907 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-6002459 --- deps/uv/docs/requirements.txt | 13 +++++++------ 1 file changed, 7 insertions(+), 6 deletions(-) diff --git a/deps/uv/docs/requirements.txt b/deps/uv/docs/requirements.txt index 8386e0178fabac..acc31d3d2b4e21 100644 --- a/deps/uv/docs/requirements.txt +++ b/deps/uv/docs/requirements.txt @@ -4,9 +4,9 @@ Sphinx==3.5.4 # dependencies alabaster==0.7.12 appdirs==1.4.3 -Babel==2.9.0 +Babel==2.9.1 CacheControl==0.12.6 -certifi==2019.11.28 +certifi==2023.7.22 chardet==3.0.4 colorama==0.4.3 contextlib2==0.6.0 @@ -17,18 +17,18 @@ html5lib==1.0.1 idna==2.8 imagesize==1.2.0 ipaddr==2.2.0 -Jinja2==2.11.3 +Jinja2==3.1.3 lockfile==0.12.2 MarkupSafe==1.1.1 msgpack==0.6.2 packaging==20.3 pep517==0.8.2 progress==1.5 -Pygments==2.8.1 +Pygments==2.15.0 pyparsing==2.4.6 pytoml==0.1.21 pytz==2021.1 -requests==2.22.0 +requests==2.31.0 retrying==1.3.3 six==1.14.0 snowballstemmer==2.1.0 @@ -38,5 +38,6 @@ sphinxcontrib-htmlhelp==1.0.3 sphinxcontrib-jsmath==1.0.1 sphinxcontrib-qthelp==1.0.3 sphinxcontrib-serializinghtml==1.1.4 -urllib3==1.25.8 +urllib3==1.26.18 webencodings==0.5.1 +setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability