From 6bdc1375a63e1cbbc678bdb32ca97dd79a1e2ff3 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 10 Sep 2024 07:53:39 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-BOTO-2849305 - https://snyk.io/vuln/SNYK-PYTHON-BOTO-40479 - https://snyk.io/vuln/SNYK-PYTHON-GEVENT-40735 - https://snyk.io/vuln/SNYK-PYTHON-GEVENT-5906371 - https://snyk.io/vuln/SNYK-PYTHON-PY-1049546 - https://snyk.io/vuln/SNYK-PYTHON-PYRAMID-40730 - https://snyk.io/vuln/SNYK-PYTHON-PYRAMID-564353 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-7448482 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-2428349 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-40552 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-40566 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-538573 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-538575 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-539932 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-543054 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-564339 - https://snyk.io/vuln/SNYK-PYTHON-WEBOB-40490 - https://snyk.io/vuln/SNYK-PYTHON-WEBOB-7687445 --- requirements.txt | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/requirements.txt b/requirements.txt index 5bba3cc6..b0bea326 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,33 +6,33 @@ PasteDeploy==1.5.2 PyYAML==3.11 Pygments==2.0.2 Sphinx==1.3.1 -WebOb==1.4.1 +WebOb==1.8.8 WebTest==2.0.18 beautifulsoup4==4.3.2 -boto==2.31.1 +boto==2.39.0 chaussette==1.2 cornice==1.0.0 couchdb-schematics==1.1.1 coverage==3.7.1 docutils==0.12 -gevent==1.1rc5 +gevent==23.9.0 greenlet==0.4.9 iso8601==0.1.10 jsonpointer==1.9 mock==1.0.1 nose==1.3.4 pbkdf2==1.3 -py==1.4.26 +py==1.10.0 pycrypto==2.6.1 pyramid-exclog==0.7 -pyramid==1.5.7 +pyramid==1.6a2 pytest==2.6.4 python-coveralls==2.5.0 pytz==2016.10 repoze.lru==0.6 requests==2.7.0 schematics==1.1.0 -setuptools==7.0 +setuptools==70.0.0 sh==1.11 simplejson==3.6.5 six==1.9.0 @@ -40,7 +40,7 @@ sphinxcontrib-httpdomain==1.4.0 translationstring==1.3 tzlocal==1.1.2 venusian==1.0 -waitress==0.8.9 +waitress==2.1.1 zope.deprecation==4.1.1 zope.interface==4.1.1 git+https://github.com/openprocurement/python-json-patch.git