From 473a922c17cf0c611c4c03370b188bd47e4d0a44 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 20 Jun 2025 20:23:36 +0000 Subject: [PATCH] fix: app/requirements-step-2.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390193 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390194 --- app/requirements-step-2.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/app/requirements-step-2.txt b/app/requirements-step-2.txt index 815c62d1..9f128256 100644 --- a/app/requirements-step-2.txt +++ b/app/requirements-step-2.txt @@ -14,3 +14,4 @@ jinja2==2.10 requests==2.18.4 PyYAML==3.12 tulipy==0.2.1 +urllib3>=2.5.0 # not directly required, pinned by Snyk to avoid a vulnerability