From 3fa1b051459eeb83c8590049bc994c903f4c5c45 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sat, 8 Jun 2024 06:31:36 +0000 Subject: [PATCH] fix: requirements/dev.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-JUPYTERSERVER-7217832 - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-7217828 - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-7217829 --- requirements/dev.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/requirements/dev.txt b/requirements/dev.txt index 9f9bf1a7..fcb9b8f5 100644 --- a/requirements/dev.txt +++ b/requirements/dev.txt @@ -15,5 +15,5 @@ notebook>=6.4.12 # not directly required, pinned by Snyk to avoid a vulnerabilit prompt-toolkit>=3.0.13 # not directly required, pinned by Snyk to avoid a vulnerability pygments>=2.15.0 # not directly required, pinned by Snyk to avoid a vulnerability setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability -tornado>=6.3.3 # not directly required, pinned by Snyk to avoid a vulnerability -jupyter-server>=2.11.2 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file +tornado>=6.4.1 # not directly required, pinned by Snyk to avoid a vulnerability +jupyter-server>=2.14.1 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file