From 513a56e6ecfd1ab87e3460189da24c94be428887 Mon Sep 17 00:00:00 2001 From: snyk-bot <snyk-bot@snyk.io> Date: Tue, 3 Dec 2024 04:23:38 +0000 Subject: [PATCH] fix: packages/nano/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-8383923 --- packages/nano/requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/packages/nano/requirements.txt b/packages/nano/requirements.txt index d880f10..09d73ac 100644 --- a/packages/nano/requirements.txt +++ b/packages/nano/requirements.txt @@ -5,3 +5,4 @@ gitpython>=3.1.30 # not directly required, pinned by Snyk to avoid a vulnerabili setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability tftpy>=0.8.1 # not directly required, pinned by Snyk to avoid a vulnerability wheel>=0.38.0 # not directly required, pinned by Snyk to avoid a vulnerability +aiohttp>=3.10.11 # not directly required, pinned by Snyk to avoid a vulnerability