From eac4135dcb11aba19772b91803496e57e4b6e0ff Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 28 Aug 2024 04:03:37 +0000 Subject: [PATCH] fix: requirements/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-5805047 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-7430173 - https://snyk.io/vuln/SNYK-PYTHON-IDNA-6597975 --- requirements/requirements.txt | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/requirements/requirements.txt b/requirements/requirements.txt index 6e149d4..4e285fa 100644 --- a/requirements/requirements.txt +++ b/requirements/requirements.txt @@ -6,4 +6,6 @@ discord.py==1.7.3 requests==2.27.1 schedule==1.1.0 python-ibc>=0.2.0 -discord_webhook \ No newline at end of file +discord_webhook +certifi>=2024.7.4 # not directly required, pinned by Snyk to avoid a vulnerability +idna>=3.7 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file