From b50c20fd7fda920576b6179253f8efc1d94942c5 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 31 Dec 2021 02:00:00 +0000 Subject: [PATCH] fix: requirements-dev.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-MISTUNE-2328096 --- requirements-dev.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/requirements-dev.txt b/requirements-dev.txt index 76aaeefa648f4..ed2f4bd93508f 100644 --- a/requirements-dev.txt +++ b/requirements-dev.txt @@ -41,4 +41,5 @@ xarray xlrd xlsxwriter xlwt -cpplint \ No newline at end of file +cpplint +mistune>=2.0.1 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file