From e887de2356c67dda16dde1ca4a5698bd00784763 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 2 Mar 2025 05:03:19 +0000 Subject: [PATCH] fix: test/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-HOLIDAYS-6591328 - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- test/requirements.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/test/requirements.txt b/test/requirements.txt index fb6e048..edd54eb 100644 --- a/test/requirements.txt +++ b/test/requirements.txt @@ -1,8 +1,9 @@ tensorflow==2.11.0 darts==0.23.1 prophet==1.1.2 -holidays==0.24 +holidays==0.45 greykite==0.2.0 shap==0.41.0 pmdarima==2.0.2 pandas_datareader==0.10.0 +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability