From b49e9d4e3e909a73e9c143ff9191e682bd03b779 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 11 Dec 2024 18:30:08 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-5805047 - https://snyk.io/vuln/SNYK-PYTHON-IDNA-6597975 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-3113877 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-3113878 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5489784 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6043904 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6514866 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-7856141 - https://snyk.io/vuln/SNYK-PYTHON-PYPDF2-3186343 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1085966 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-5926907 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-6002459 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250 --- requirements.txt | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) diff --git a/requirements.txt b/requirements.txt index 7993b77..ee3f1a0 100644 --- a/requirements.txt +++ b/requirements.txt @@ -1,24 +1,24 @@ -certifi==2020.12.5 +certifi==2023.7.22 chardet==4.0.0 cycler==0.10.0 DateTime==4.3 et-xmlfile==1.0.1 fpdf2==2.5.5 -idna==2.10 +idna==3.7 ipaddress==1.0.23 jdcal==1.4.1 kiwisolver==1.4.3 matplotlib==3.3.3 numpy==1.23.0 openpyxl==3.0.6 -Pillow==9.2.0 +Pillow==10.3.0 pyparsing==2.4.7 -PyPDF2==2.4.2 +PyPDF2==2.10.6 python-dateutil==2.8.1 pytz==2020.5 -requests==2.25.1 +requests==2.32.2 sh==1.14.1 six==1.15.0 tld==0.12.5 -urllib3==1.26.2 +urllib3==1.26.19 zope.interface==5.2.0