fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749 - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-5805047 - https://snyk.io/vuln/SNYK-PYTHON-IDNA-6597975 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1727377 - https://snyk.io/vuln/SNYK-PYTHON-PYLINT-1089548 - https://snyk.io/vuln/SNYK-PYTHON-PYLINT-609883 - https://snyk.io/vuln/SNYK-PYTHON-PYLINT-6514864 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867 - https://snyk.io/vuln/SNYK-PYTHON-RSA-1038401 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1085966 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-5926907 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-6002459 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250
evildevill · Jun 19, 2024 · 6436da2 · 6436da2
1 parent 75f1128
commit 6436da2
Showing 1 changed file with 9 additions and 8 deletions.
diff --git a/requirements.txt b/requirements.txt
@@ -3,7 +3,7 @@ attrs==20.3.0
 autopep8==1.5.4
 beautifulsoup4==4.9.3
 cachetools==4.1.1
-certifi==2020.11.8
+certifi==2023.7.22
 chardet==3.0.4
 click==7.1.2
 colorama==0.4.4
@@ -23,7 +23,7 @@ googleapis-common-protos==1.52.0
 httplib2==0.18.1
 hurry==1.1
 hurry.filesize==0.9
-idna==2.10
+idna==3.7
 isort==5.6.4
 lazy-object-proxy==1.4.3
 lxml==4.6.2
@@ -32,7 +32,7 @@ more-itertools==8.6.0
 MouseInfo==0.1.3
 numpy==1.19.5
 oauthlib==3.1.0
-Pillow==8.0.1
+Pillow==8.3.2
 pprintpp==0.4.0
 protobuf==3.14.0
 psutil==5.7.3
@@ -43,7 +43,7 @@ pycodestyle==2.6.0
 pyflakes==2.2.0
 PyGetWindow==0.0.9
 pyjokes==0.6.0
-pylint==2.6.0
+pylint==2.7.0
 PyMsgBox==1.0.9
 pyperclip==1.8.1
 pypiwin32==223
@@ -62,19 +62,20 @@ pywin32==300
 qt5-applications==5.15.2.2.1
 qt5-tools==5.15.2.1.0.1
 ratelim==0.1.6
-requests==2.25.0
+requests==2.32.2
 requests-oauthlib==1.3.0
-rsa==4.6
+rsa==4.7
 selenium==3.141.0
 six==1.15.0
 soupsieve==2.0.1
 SpeechRecognition==3.8.1
 toml==0.10.2
 uritemplate==3.0.1
-urllib3==1.26.2
+urllib3==1.26.19
 wikipedia==1.4.0
 wincertstore==0.2
 wolframalpha==4.1.1
 wrapt==1.12.1
 xml-python==0.3.5
-xmltodict==0.12.0
+xmltodict==0.12.0
+setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability