From c42a93009458779bf96d0bc096f887b30d93d77a Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 5 May 2024 14:50:54 +0000 Subject: [PATCH] fix: requirements-dev.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6808823 --- requirements-dev.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements-dev.txt b/requirements-dev.txt index 60dd738e43..2764cd3112 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -101,3 +101,4 @@ jupyterlab >=3.4,<4 jupyterlite==0.1.0b10 sphinx-toggleprompt setuptools>=51.0.0 +aiohttp>=3.9.4 # not directly required, pinned by Snyk to avoid a vulnerability