From 2d4ea27d2b921a4146d43f47512cd5c839a0bc86 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 30 Sep 2024 15:48:28 +0000 Subject: [PATCH] fix: requirements.extra.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091621 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6091622 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209406 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6209407 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6645291 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-6808823 - https://snyk.io/vuln/SNYK-PYTHON-AIOHTTP-7675597 - https://snyk.io/vuln/SNYK-PYTHON-NETWORKX-1062709 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-5918878 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6043904 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6514866 - https://snyk.io/vuln/SNYK-PYTHON-PYARROW-6052811 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867 - https://snyk.io/vuln/SNYK-PYTHON-STREAMLIT-2964954 - https://snyk.io/vuln/SNYK-PYTHON-STREAMLIT-3362246 - https://snyk.io/vuln/SNYK-PYTHON-STREAMLIT-5880413 - https://snyk.io/vuln/SNYK-PYTHON-STREAMLIT-6156621 - https://snyk.io/vuln/SNYK-PYTHON-STREAMLIT-7676257 - https://snyk.io/vuln/SNYK-PYTHON-TORCH-3149871 - https://snyk.io/vuln/SNYK-PYTHON-TORCH-6346760 - https://snyk.io/vuln/SNYK-PYTHON-TORCH-6346761 - https://snyk.io/vuln/SNYK-PYTHON-TORCH-6619806 - https://snyk.io/vuln/SNYK-PYTHON-TORCH-6649934 - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-5537286 - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-5840803 - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-6041512 - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-7217828 - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-7217829 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-7267250 - https://snyk.io/vuln/SNYK-PYTHON-VALIDATORS-6008990 - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- requirements.extra.txt | 17 +++++++++++++---- 1 file changed, 13 insertions(+), 4 deletions(-) diff --git a/requirements.extra.txt b/requirements.extra.txt index 13c3f5f..3255201 100644 --- a/requirements.extra.txt +++ b/requirements.extra.txt @@ -1,9 +1,18 @@ -networkx==2.4 +networkx==2.6 pydot==1.4.1 -streamlit==0.75.0 +streamlit==1.37.0 watchdog==1.0.2 plotly==4.14.3 python-mnist -torch==1.6.0 +torch==2.2.0 datasets==1.15.1 -embeddings==0.0.8 \ No newline at end of file +embeddings==0.0.8 +aiohttp>=3.10.2 # not directly required, pinned by Snyk to avoid a vulnerability +numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability +pillow>=10.3.0 # not directly required, pinned by Snyk to avoid a vulnerability +pyarrow>=14.0.1 # not directly required, pinned by Snyk to avoid a vulnerability +requests>=2.32.2 # not directly required, pinned by Snyk to avoid a vulnerability +tornado>=6.4.1 # not directly required, pinned by Snyk to avoid a vulnerability +urllib3>=2.2.2 # not directly required, pinned by Snyk to avoid a vulnerability +validators>=0.21.0 # not directly required, pinned by Snyk to avoid a vulnerability +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file