From 471918bb2de8bd11bfa38da6696505d9023b75ca Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 14 Mar 2023 22:26:46 +0000 Subject: [PATCH] fix: Documentation/sphinx/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 - https://snyk.io/vuln/SNYK-PYTHON-SPHINX-570772 - https://snyk.io/vuln/SNYK-PYTHON-SPHINX-570773 --- Documentation/sphinx/requirements.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/Documentation/sphinx/requirements.txt b/Documentation/sphinx/requirements.txt index 2c573541ab712f..8f8235837746e5 100644 --- a/Documentation/sphinx/requirements.txt +++ b/Documentation/sphinx/requirements.txt @@ -1,4 +1,5 @@ # jinja2>=3.1 is not compatible with Sphinx<4.0 jinja2<3.1 sphinx_rtd_theme -Sphinx==2.4.4 +Sphinx==3.0.4 +setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability