From 533da068de5c07395795cce9420a76bd289113d5 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 18 Jun 2024 18:28:44 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250 --- requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements.txt b/requirements.txt index 0ce65cd..35f0752 100644 --- a/requirements.txt +++ b/requirements.txt @@ -2,3 +2,4 @@ python-gitlab==1.11.0 requests_mock==1.7.0 coverage==4.5.4 pytest==5.0.1 # fixes https://github.com/microsoft/vscode-python/issues/6990 +urllib3>=2.2.2 # not directly required, pinned by Snyk to avoid a vulnerability