Skip to content

Commit

Permalink
fix: requirements-dev.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867
  • Loading branch information
snyk-bot committed May 22, 2024
1 parent caee951 commit 8e9e99c
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion requirements-dev.txt
Original file line number Diff line number Diff line change
Expand Up @@ -32,4 +32,5 @@ xmltodict >= 0.12

# test requirements for extra packages
zarr >= 2.13.3
tornado>=6.3.3 # not directly required, pinned by Snyk to avoid a vulnerability
tornado>=6.3.3 # not directly required, pinned by Snyk to avoid a vulnerability
requests>=2.32.0 # not directly required, pinned by Snyk to avoid a vulnerability

0 comments on commit 8e9e99c

Please sign in to comment.