From a248b6995a0c98c17e4b76dcda795e55fb399c93 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 10 Oct 2022 21:44:07 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1014645 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435 --- requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements.txt b/requirements.txt index 031ce09..734c06d 100644 --- a/requirements.txt +++ b/requirements.txt @@ -11,3 +11,4 @@ PyYAML configparser==3.5.0 hca-ingest>=0.6.11 openpyxl==2.6.2 +urllib3>=1.26.5 # not directly required, pinned by Snyk to avoid a vulnerability