From 55bce42945dbb8bb3aa72771b5b88b83753d4e29 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 9 Jul 2024 14:46:58 +0000 Subject: [PATCH] fix: framework/requirements-dev.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- framework/requirements-dev.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/framework/requirements-dev.txt b/framework/requirements-dev.txt index 5046aa7..8826081 100644 --- a/framework/requirements-dev.txt +++ b/framework/requirements-dev.txt @@ -7,4 +7,5 @@ pytest-aiohttp==1.0.4 pytest-asyncio==0.18.1 pytest-html==2.1.1 pytest-trio==0.8.0 -tavern==1.23.5 \ No newline at end of file +tavern==1.23.5 +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file