From 1b8a9a079174e87ac2345dcacca425849bd8d766 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 13 Jul 2024 03:13:16 +0000 Subject: [PATCH] fix: dev-requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899 --- dev-requirements.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/dev-requirements.txt b/dev-requirements.txt index dfd95ea9..995de4ba 100644 --- a/dev-requirements.txt +++ b/dev-requirements.txt @@ -6,4 +6,5 @@ httpretty==0.9.7 parameterized==0.8.1 pytest-cov pytest-ckan -six>=1.13.0 \ No newline at end of file +six>=1.13.0 +zipp>=3.19.1 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file