From 6b099474b774cb04a67f7ab33dc1a371e9154d97 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 11 Jul 2024 07:24:43 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7435780 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7436273 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7436514 - https://snyk.io/vuln/SNYK-PYTHON-DJANGO-7436646 --- requirements.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 2bc454e..aa48c77 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,4 +5,5 @@ subprocess six mysqldump os -logging \ No newline at end of file +logging +django>=4.2.14 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file