From 28758d1b4b2d499d33de5f9247fc9400e2ca9ace Mon Sep 17 00:00:00 2001 From: "whitesource-bolt-for-github[bot]" <42819689+whitesource-bolt-for-github[bot]@users.noreply.github.com> Date: Mon, 1 Jul 2019 02:47:42 +0000 Subject: [PATCH 1/4] Initial WhiteSource configuration file --- .whitesource | 8 ++++++++ 1 file changed, 8 insertions(+) create mode 100644 .whitesource diff --git a/.whitesource b/.whitesource new file mode 100644 index 0000000..f056952 --- /dev/null +++ b/.whitesource @@ -0,0 +1,8 @@ +{ + "generalSettings": { + "shouldScanRepo": true + }, + "checkRunSettings": { + "vulnerableCheckRunConclusionLevel": "failure" + } +} \ No newline at end of file From 0bc9dda7633b4b16d7ee05b074988eccd2719a05 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 16 Apr 2020 09:37:41 +0000 Subject: [PATCH 2/4] fix: examples/flask/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-JINJA2-174126 - https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-72435 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-174323 - https://snyk.io/vuln/SNYK-PYTHON-URLLIB3-174464 - https://snyk.io/vuln/SNYK-PYTHON-WERKZEUG-458931 --- examples/flask/requirements.txt | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/examples/flask/requirements.txt b/examples/flask/requirements.txt index 4385a34..8a7377e 100644 --- a/examples/flask/requirements.txt +++ b/examples/flask/requirements.txt @@ -12,7 +12,7 @@ Flask-Bootstrap==3.3.7.1 idna==2.7 isort==4.3.4 itsdangerous==0.24 -Jinja2==2.10 +Jinja2==2.10.1 lazy-object-proxy==1.3.1 MarkupSafe==1.0 mccabe==0.6.1 @@ -25,11 +25,11 @@ pytest==3.6.3 pytest-cov==2.5.1 pytest-sugar==0.9.1 python-dateutil==2.7.3 -requests==2.19.1 +requests==2.20 six==1.11.0 termcolor==1.1.0 -urllib3==1.23 +urllib3==1.24.3 visitor==0.1.3 -Werkzeug==0.14.1 +Werkzeug==0.15.3 wrapt==1.10.11 xmltodict==0.11.0 From b070803c36d68ba407da6a47185505268494e764 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 18 Feb 2021 08:39:25 +0000 Subject: [PATCH 3/4] fix: examples/flask/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PYLINT-609883 --- examples/flask/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/examples/flask/requirements.txt b/examples/flask/requirements.txt index 8a7377e..90c5ad9 100644 --- a/examples/flask/requirements.txt +++ b/examples/flask/requirements.txt @@ -20,7 +20,7 @@ more-itertools==4.2.0 pagseguro==0.3.2 pluggy==0.6.0 py==1.5.4 -pylint==2.0.0 +pylint==2.6.1 pytest==3.6.3 pytest-cov==2.5.1 pytest-sugar==0.9.1 From a7c2bb139ae625d8584b4c88d4e8e91ea0d29173 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 31 Mar 2021 08:39:21 +0000 Subject: [PATCH 4/4] fix: examples/flask/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PYLINT-1089548 --- examples/flask/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/examples/flask/requirements.txt b/examples/flask/requirements.txt index 90c5ad9..c769c8c 100644 --- a/examples/flask/requirements.txt +++ b/examples/flask/requirements.txt @@ -20,7 +20,7 @@ more-itertools==4.2.0 pagseguro==0.3.2 pluggy==0.6.0 py==1.5.4 -pylint==2.6.1 +pylint==2.7.0 pytest==3.6.3 pytest-cov==2.5.1 pytest-sugar==0.9.1