From 6254f0e1a176807f58e2673f8b87866f54598b76 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 9 Jun 2023 04:03:59 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-BOTO-2849305 - https://snyk.io/vuln/SNYK-PYTHON-BOTO-40479 - https://snyk.io/vuln/SNYK-PYTHON-GEVENT-40735 - https://snyk.io/vuln/SNYK-PYTHON-PY-1049546 - https://snyk.io/vuln/SNYK-PYTHON-PYRAMID-40730 - https://snyk.io/vuln/SNYK-PYTHON-PYRAMID-564353 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-2428349 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-40552 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-40566 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-538573 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-538575 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-539932 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-543054 - https://snyk.io/vuln/SNYK-PYTHON-WAITRESS-564339 - https://snyk.io/vuln/SNYK-PYTHON-WEBOB-40490 --- requirements.txt | 14 +++++++------- 1 file changed, 7 insertions(+), 7 deletions(-) diff --git a/requirements.txt b/requirements.txt index d61b4d17..58e42834 100644 --- a/requirements.txt +++ b/requirements.txt @@ -6,33 +6,33 @@ PasteDeploy==1.5.2 PyYAML==3.11 Pygments==2.0.2 Sphinx==1.3.1 -WebOb==1.4.1 +WebOb==1.6.0a0 WebTest==2.0.18 beautifulsoup4==4.3.2 -boto==2.31.1 +boto==2.39.0 chaussette==1.2 cornice==1.0.0 couchdb-schematics==1.1.1 coverage==3.7.1 docutils==0.12 -gevent==1.1rc5 +gevent==1.2a1 greenlet==0.4.9 iso8601==0.1.10 jsonpointer==1.9 mock==1.0.1 nose==1.3.4 pbkdf2==1.3 -py==1.4.26 +py==1.10.0 pycrypto==2.6.1 pyramid-exclog==0.7 -pyramid==1.5.7 +pyramid==1.6a2 pytest==2.6.4 python-coveralls==2.5.0 pytz==2014.10 repoze.lru==0.6 requests==2.7.0 schematics==1.1.1 -setuptools==7.0 +setuptools==65.5.1 sh==1.11 simplejson==3.6.5 six==1.9.0 @@ -40,7 +40,7 @@ sphinxcontrib-httpdomain==1.4.0 translationstring==1.3 tzlocal==1.1.2 venusian==1.0 -waitress==0.8.9 +waitress==2.1.1 zope.deprecation==4.1.1 zope.interface==4.1.1 git+https://github.com/openprocurement/barbecue.git