From 6fcc93b96ab42cdb0678fe2612d0ea0d600d98f7 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 7 Feb 2023 23:06:26 +0000 Subject: [PATCH] fix: repos/lopq/python/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966 - https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970 --- repos/lopq/python/requirements.txt | 3 ++- 1 file changed, 2 insertions(+), 1 deletion(-) diff --git a/repos/lopq/python/requirements.txt b/repos/lopq/python/requirements.txt index 4c7bd1806..848b96ef0 100644 --- a/repos/lopq/python/requirements.txt +++ b/repos/lopq/python/requirements.txt @@ -1,4 +1,5 @@ nose>=1.3.4 protobuf>=2.6 scikit-learn>=0.15 -lmdb>=0.87 \ No newline at end of file +lmdb>=0.87 +numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability \ No newline at end of file