[Snyk] Security upgrade sympy from 1.10.1 to 1.12 (#514)

* fix: requirements-cli.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SYMPY-6084333 * Update requirements-cli.txt --------- Co-authored-by: snyk-bot <[email protected]>
kyhau · Nov 26, 2023 · 3c9cfe6 · 3c9cfe6
1 parent d772cd9
commit 3c9cfe6
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/requirements-cli.txt b/requirements-cli.txt
@@ -43,4 +43,5 @@ httpie                    # https://github.com/httpie/httpie
 #pipdeptree               # https://github.com/naiquevin/pipdeptree
 #pydot                    # use tegether with cfn-lint to generate DOT file, require graphviz
 #yq                       # YAML/XML processor - jq wrapper for YAML/XML documents, https://github.com/kislyuk/yq
-setuptools>=65.5.1        # not directly required, pinned by Snyk to avoid a vulnerability
+setuptools>=65.5.1        # not directly required, pinned by Snyk to avoid a vulnerability
+sympy>=1.12               # not directly required, pinned by Snyk to avoid a vulnerability