Skip to content

Commit

Permalink
fix: backend/requirements.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-5926907
- https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-6002459
  • Loading branch information
@snyk-bot
snyk-bot committed Jan 26, 2024
1 parent 29e07c5 commit 01bd130
Showing 1 changed file with 2 additions and 1 deletion.
3 changes: 2 additions & 1 deletion backend/requirements.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -97,7 +97,7 @@ typing-extensions==4.7.1
# via
# importlib-metadata
# kfp
urllib3==1.26.16
urllib3==1.26.18
# via
# google-auth
# kfp
Expand All @@ -111,3 +111,4 @@ zipp==3.15.0

# The following packages are considered to be unsafe in a requirements file:
# setuptools
setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability

0 comments on commit 01bd130

Please sign in to comment.