From 12ad3a7435b16f1222fb8082da6dc46b9191996a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 5 Jan 2023 08:57:05 -0800 Subject: [PATCH] fix: requirements-to-freeze.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749 - https://snyk.io/vuln/SNYK-PYTHON-MAKO-3017600 --- requirements-to-freeze.txt | 2 ++ 1 file changed, 2 insertions(+) diff --git a/requirements-to-freeze.txt b/requirements-to-freeze.txt index 12983cc..24d0332 100644 --- a/requirements-to-freeze.txt +++ b/requirements-to-freeze.txt @@ -18,3 +18,5 @@ gunicorn # Testing && development flake8 black +certifi>=2022.12.7 # not directly required, pinned by Snyk to avoid a vulnerability +mako>=1.2.2 # not directly required, pinned by Snyk to avoid a vulnerability