From 609f7e0861088d62be8861d4308039375929c547 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 30 Mar 2025 07:45:36 +0000 Subject: [PATCH 1/4] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-7448482 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index cc8fbff8..40a68b76 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,4 +4,4 @@ cwcwidth greenlet pyxdg requests -setuptools>=62.4.0 +setuptools>=70.0.0 From fd4054be8f8ffc9566750dedbcc8434306014ca6 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 30 Mar 2025 08:23:24 +0000 Subject: [PATCH 2/4] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412 From c0f9136f0c5966dbbc1014f19578af667303d850 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 6 May 2025 08:15:44 +0000 Subject: [PATCH 3/4] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-9964606 --- requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/requirements.txt b/requirements.txt index 40a68b76..d622567f 100644 --- a/requirements.txt +++ b/requirements.txt @@ -4,4 +4,4 @@ cwcwidth greenlet pyxdg requests -setuptools>=70.0.0 +setuptools>=78.1.1 From 1c87d2b5654274b137b776633ee9eb76d266545b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 15 Jul 2025 09:57:17 +0000 Subject: [PATCH 4/4] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390193 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-10390194 --- requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements.txt b/requirements.txt index d622567f..34bea932 100644 --- a/requirements.txt +++ b/requirements.txt @@ -5,3 +5,4 @@ greenlet pyxdg requests setuptools>=78.1.1 +urllib3>=2.5.0 # not directly required, pinned by Snyk to avoid a vulnerability