From eab6c08cd5cc4ccd96e622b697aa7dabdf10e5f7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 28 Jul 2021 00:50:44 +0000 Subject: [PATCH] fix: requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-1533435 --- requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements.txt b/requirements.txt index e5ad65f..98ac554 100644 --- a/requirements.txt +++ b/requirements.txt @@ -16,3 +16,4 @@ flake8==3.7.7 pre-commit==1.14.4 google-cloud-pubsub==1.0.2 git+git://github.com/HumanCellAtlas/pipeline-tools@v0.58.1 +urllib3>=1.26.5 # not directly required, pinned by Snyk to avoid a vulnerability