From 1001a7019ca7ad9c4f042a07ce8ce5f44b7de164 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 15 Nov 2022 09:41:23 +0000 Subject: [PATCH] fix: requirements/base.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3113904 --- requirements/base.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/requirements/base.txt b/requirements/base.txt index 31f018d0..cfb10740 100644 --- a/requirements/base.txt +++ b/requirements/base.txt @@ -19,3 +19,4 @@ django_storages==1.7 # Hosting all the site images django-dotenv==1.4.1 # Read env variables from a file for DEV boto==2.48.0 # Talking to AWS flake8==3.5.0 # Python linter +setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability