From 1d66337925730b9776bf548100f1204c7d08383d Mon Sep 17 00:00:00 2001 From: snyk-bot <snyk-bot@snyk.io> Date: Tue, 16 Jul 2024 05:10:57 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-7448482 --- requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements.txt b/requirements.txt index a268cb0..4c96882 100644 --- a/requirements.txt +++ b/requirements.txt @@ -39,3 +39,4 @@ six==1.14.0 versionfinder>=1.0.0 wishlist==0.2.2 Werkzeug==1.0.1 +setuptools>=70.0.0 # not directly required, pinned by Snyk to avoid a vulnerability