Skip to content

Commit

Permalink
fix: requirements.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-5537286
- https://snyk.io/vuln/SNYK-PYTHON-TORNADO-5840803
  • Loading branch information
@snyk-bot
snyk-bot committed Oct 30, 2023
1 parent 04fd603 commit 7f26a6d
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion requirements.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -16,4 +16,4 @@ setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerabil
slack_sdk==3.21.3
Werkzeug~=3.0.1
certifi>=2022.12.7 # not directly required, pinned by Snyk to avoid a vulnerability
tornado==6.1 # has to stay fixed until python-telegram-bot is upgraded
tornado==6.3.3 # has to stay fixed until python-telegram-bot is upgraded

0 comments on commit 7f26a6d

Please sign in to comment.