fix: requirements.txt to reduce vulnerabilities

The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6150717 - https://snyk.io/vuln/SNYK-PYTHON-JINJA2-6809379 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-3319935 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-3319936 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6035177 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-6808933
mongulu-cm · Aug 30, 2024 · 731b991 · 731b991
1 parent cf9b9b9
commit 731b991
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/requirements.txt b/requirements.txt
@@ -12,4 +12,5 @@ selenium-wire==4.2.0
 certifi>=2023.7.22 # not directly required, pinned by Snyk to avoid a vulnerability
 requests>=2.32.2 # not directly required, pinned by Snyk to avoid a vulnerability
 urllib3>=2.2.2 # not directly required, pinned by Snyk to avoid a vulnerability
-Werkzeug==2.1.2
+Werkzeug==3.0.3
+jinja2>=3.1.4 # not directly required, pinned by Snyk to avoid a vulnerability