Skip to content
This repository was archived by the owner on Jun 6, 2020. It is now read-only.

Resolve vulnerable dependancies and allow use of later versions#31

Open
gwestwood wants to merge 4 commits intoachow101:masterfrom
gwestwood:master
Open

Resolve vulnerable dependancies and allow use of later versions#31
gwestwood wants to merge 4 commits intoachow101:masterfrom
gwestwood:master

Conversation

@gwestwood
Copy link

@gwestwood gwestwood commented Jan 9, 2020

I've used snyk to report vulnerabilities and amended the requirements file to allow use of later versions.

@gwestwood
Upgrade dependancies due to vulnerabilities [snyk]
a391d66 
Changed versions as per report from Snyk re vulnerabilities.
@gwestwood
Merge pull request #1 from gwestwood/snyk-patch-1
afb2340 
Upgrade dependancies due to vulnerabilities [snyk]
@gwestwood
Allow later versions to be installed, and update urllib3
98b5c61 
1) Change to have minimum required versions, so potentially the installer can pick non-vulnerable ones.
2) Update urllib3 minimum version due to vulnerability from a Snyk report.
@gwestwood
Merge pull request #2 from gwestwood/gwestwood-patch-1
7aff1e9 
Allow later versions to be installed, and update urllib3
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@gwestwood