From 24f5ec66dccd30dcb8200cea381e8f6ad17dcd14 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 20 Jul 2024 02:25:01 +0000 Subject: [PATCH] fix: Solutions/TenableIO/Data Connectors/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209406 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209407 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6645291 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6808823 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867 - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- Solutions/TenableIO/Data Connectors/requirements.txt | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/Solutions/TenableIO/Data Connectors/requirements.txt b/Solutions/TenableIO/Data Connectors/requirements.txt index 1817e3f36ac..a2127aef808 100644 --- a/Solutions/TenableIO/Data Connectors/requirements.txt +++ b/Solutions/TenableIO/Data Connectors/requirements.txt @@ -7,4 +7,6 @@ azure-functions==1.7.2 azure-functions-durable==1.0.3 azure-storage-queue==12.1.6 pyTenable==1.3.3 -requests==2.26.0 \ No newline at end of file +requests==2.32.2 +aiohttp>=3.9.4 # not directly required, pinned by Snyk to avoid a vulnerability +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file