From 50ebe6a434ca9a952082a322e420f1fdff7d7e76 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 16 Jul 2024 04:16:31 +0000 Subject: [PATCH] fix: app/requirements-step-2.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-7448482 --- app/requirements-step-2.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/app/requirements-step-2.txt b/app/requirements-step-2.txt index 815c62d1..bcc374ca 100644 --- a/app/requirements-step-2.txt +++ b/app/requirements-step-2.txt @@ -14,3 +14,4 @@ jinja2==2.10 requests==2.18.4 PyYAML==3.12 tulipy==0.2.1 +setuptools>=70.0.0 # not directly required, pinned by Snyk to avoid a vulnerability