From fbfd0e46a2cd3a7cb7f5872342ec751ab1f2fef0 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 2 May 2023 15:21:47 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749 - https://snyk.io/vuln/SNYK-PYTHON-FUTURE-3180414 - https://snyk.io/vuln/SNYK-PYTHON-HTTPLIB2-1065795 - https://snyk.io/vuln/SNYK-PYTHON-LXML-1088006 - https://snyk.io/vuln/SNYK-PYTHON-LXML-2316995 - https://snyk.io/vuln/SNYK-PYTHON-LXML-2940874 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321969 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1055461 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1055462 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1059090 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1080635 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1080654 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1081494 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1081501 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1081502 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1082329 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1082750 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1090584 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1090586 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1090587 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1090588 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1292150 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1292151 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1316216 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1319443 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-1727377 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2329135 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2331901 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2331905 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2331907 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-2397241 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-3113875 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-3113876 - https://snyk.io/vuln/SNYK-PYTHON-PROTOBUF-3031740 - https://snyk.io/vuln/SNYK-PYTHON-PYLINT-1089548 - https://snyk.io/vuln/SNYK-PYTHON-PYLINT-609883 - https://snyk.io/vuln/SNYK-PYTHON-RSA-1038401 - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1085966 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435 --- requirements.txt | 23 ++++++++++++----------- 1 file changed, 12 insertions(+), 11 deletions(-) diff --git a/requirements.txt b/requirements.txt index f4fd586..bcbe847 100644 --- a/requirements.txt +++ b/requirements.txt @@ -3,14 +3,14 @@ attrs==20.3.0 autopep8==1.5.4 beautifulsoup4==4.9.3 cachetools==4.1.1 -certifi==2020.11.8 +certifi==2022.12.7 chardet==3.0.4 click==7.1.2 colorama==0.4.4 comtypes==1.1.7 decorator==4.4.2 flake8==3.8.4 -future==0.18.2 +future==0.18.3 geocoder==1.38.1 geographiclib==1.50 geopy==2.0.0 @@ -20,21 +20,21 @@ google-auth==1.23.0 google-auth-httplib2==0.0.4 google-auth-oauthlib==0.4.2 googleapis-common-protos==1.52.0 -httplib2==0.18.1 +httplib2==0.19.0 hurry==1.1 hurry.filesize==0.9 idna==2.10 isort==5.6.4 lazy-object-proxy==1.4.3 -lxml==4.6.2 +lxml==4.9.1 mccabe==0.6.1 more-itertools==8.6.0 MouseInfo==0.1.3 -numpy==1.19.5 +numpy==1.22.2 oauthlib==3.1.0 -Pillow==8.0.1 +Pillow==9.2.0 pprintpp==0.4.0 -protobuf==3.14.0 +protobuf==3.18.3 psutil==5.7.3 pyasn1==0.4.8 pyasn1-modules==0.2.8 @@ -43,7 +43,7 @@ pycodestyle==2.6.0 pyflakes==2.2.0 PyGetWindow==0.0.9 pyjokes==0.6.0 -pylint==2.6.0 +pylint==2.7.0 PyMsgBox==1.0.9 pyperclip==1.8.1 pypiwin32==223 @@ -64,17 +64,18 @@ qt5-tools==5.15.2.1.0.1 ratelim==0.1.6 requests==2.25.0 requests-oauthlib==1.3.0 -rsa==4.6 +rsa==4.7 selenium==3.141.0 six==1.15.0 soupsieve==2.0.1 SpeechRecognition==3.8.1 toml==0.10.2 uritemplate==3.0.1 -urllib3==1.26.2 +urllib3==1.26.5 wikipedia==1.4.0 wincertstore==0.2 wolframalpha==4.1.1 wrapt==1.12.1 xml-python==0.3.5 -xmltodict==0.12.0 \ No newline at end of file +xmltodict==0.12.0 +setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file