Skip to content

Commit

Permalink
fix: requirements.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-MYSQLCONNECTORPYTHON-7175985
- https://snyk.io/vuln/SNYK-PYTHON-MYSQLCONNECTORPYTHON-8225083
- https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250
- https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899
  • Loading branch information
@snyk-bot
snyk-bot committed Nov 1, 2024
1 parent 29bb61f commit 05d3ed4
Showing 1 changed file with 4 additions and 0 deletions.
4 changes: 4 additions & 0 deletions requirements.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -11,3 +11,7 @@ python-Levenshtein
artcommon @ git+https://github.com/openshift-eng/art-tools.git@main#subdirectory=artcommon
rh-doozer @ git+https://github.com/openshift-eng/art-tools.git@main#subdirectory=doozer
pyartcd @ git+https://github.com/openshift-eng/art-tools.git@main#subdirectory=pyartcd
mysql-connector-python>=9.1.0 # not directly required, pinned by Snyk to avoid a vulnerability
requests>=2.32.2 # not directly required, pinned by Snyk to avoid a vulnerability
urllib3>=2.2.2 # not directly required, pinned by Snyk to avoid a vulnerability
zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability

0 comments on commit 05d3ed4

Please sign in to comment.