From 105cb67e0df5533719413d3d5bab7a06ea6089fa Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 24 Dec 2022 06:33:59 +0000 Subject: [PATCH] fix: dev_requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 - https://snyk.io/vuln/SNYK-PYTHON-WHEEL-3180413 --- dev_requirements.txt | 2 ++ 1 file changed, 2 insertions(+) diff --git a/dev_requirements.txt b/dev_requirements.txt index 2478418..0ea1037 100644 --- a/dev_requirements.txt +++ b/dev_requirements.txt @@ -5,3 +5,5 @@ pypandoc requests-mock==0.7.0 requests>=2.20.0,<3 unittest2 +setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability +wheel>=0.38.0 # not directly required, pinned by Snyk to avoid a vulnerability