From 2d487fcd60695bade4df4de5caef6d396bb94a22 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 29 Sep 2023 21:43:03 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435 --- requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements.txt b/requirements.txt index 3e7f314..9b879c2 100644 --- a/requirements.txt +++ b/requirements.txt @@ -9,3 +9,4 @@ hca >= 6.3.0, <7 psycopg2-binary==2.7.5 dcplib >= 3.2.1, < 4 PyGithub +urllib3>=1.26.5 # not directly required, pinned by Snyk to avoid a vulnerability