From 6e22b145965e808a7420412479add48929e3c1a8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 10 Jul 2024 08:35:50 +0000 Subject: [PATCH] fix: api/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- api/requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/api/requirements.txt b/api/requirements.txt index dd71d29..f045e4a 100644 --- a/api/requirements.txt +++ b/api/requirements.txt @@ -12,3 +12,4 @@ requests==2.25.1 six==1.16.0 urllib3==1.26.5 Werkzeug==2.0.1 +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability