From 5533e7972229cc49c0ebda5ff37406aeb11a3ce6 Mon Sep 17 00:00:00 2001 From: DailyDreaming Date: Thu, 21 May 2020 17:11:36 -0400 Subject: [PATCH 1/2] Update dss reqs to address snyk vulnerabilities. --- requirements-dev.txt | 3 ++- requirements.txt | 3 ++- requirements.txt.in | 2 +- 3 files changed, 5 insertions(+), 3 deletions(-) diff --git a/requirements-dev.txt b/requirements-dev.txt index 60b90e81ee..f90ec37671 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -64,6 +64,7 @@ mypy-extensions==0.4.1 nestedcontext==0.0.4 oauth2client==4.1.3 orderedmultidict==1.0.1 +pkg-resources==0.0.0 protobuf==3.9.1 puremagic==1.4 pyasn1==0.4.7 @@ -75,7 +76,7 @@ Pygments==2.4.2 PyJWT==1.7.1 python-dateutil==2.8.0 pytz==2019.2 -PyYAML==5.1 +PyYAML==5.3.1 requests==2.22.0 requests-aws4auth==0.9 requests-http-signature==0.1.0 diff --git a/requirements.txt b/requirements.txt index de77a3863d..f5d4a2c869 100644 --- a/requirements.txt +++ b/requirements.txt @@ -49,6 +49,7 @@ monotonic==1.5 nestedcontext==0.0.4 oauth2client==4.1.3 orderedmultidict==1.0.1 +pkg-resources==0.0.0 protobuf==3.9.1 puremagic==1.4 pyasn1==0.4.7 @@ -57,7 +58,7 @@ pycparser==2.19 PyJWT==1.7.1 python-dateutil==2.8.0 pytz==2019.2 -PyYAML==5.1 +PyYAML==5.3.1 requests==2.22.0 requests-aws4auth==0.9 requests-http-signature==0.1.0 diff --git a/requirements.txt.in b/requirements.txt.in index c7aead3c23..3c8fc76a7b 100644 --- a/requirements.txt.in +++ b/requirements.txt.in @@ -20,5 +20,5 @@ urllib3 >= 1.21.1 requests-http-signature >= 0.0.3 aws-xray-sdk >= 1.0 pyjwt >= 1.6.4 -pyyaml >= 4.2b1, <= 5.1.0 +pyyaml >= 5.3.1 flash-flood >= 0.4.3 From 2f50dcddd9ddbf8db7ce896762593dd06473763a Mon Sep 17 00:00:00 2001 From: DailyDreaming Date: Thu, 21 May 2020 17:23:45 -0400 Subject: [PATCH 2/2] Remove pkg-resources=0.0.0 --- requirements-dev.txt | 1 - requirements.txt | 1 - 2 files changed, 2 deletions(-) diff --git a/requirements-dev.txt b/requirements-dev.txt index f90ec37671..7795538aae 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -64,7 +64,6 @@ mypy-extensions==0.4.1 nestedcontext==0.0.4 oauth2client==4.1.3 orderedmultidict==1.0.1 -pkg-resources==0.0.0 protobuf==3.9.1 puremagic==1.4 pyasn1==0.4.7 diff --git a/requirements.txt b/requirements.txt index f5d4a2c869..3a76523ab0 100644 --- a/requirements.txt +++ b/requirements.txt @@ -49,7 +49,6 @@ monotonic==1.5 nestedcontext==0.0.4 oauth2client==4.1.3 orderedmultidict==1.0.1 -pkg-resources==0.0.0 protobuf==3.9.1 puremagic==1.4 pyasn1==0.4.7