snyk-bot
f6adbb346b
fix: requirements-dev.txt to reduce vulnerabilities
...
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-ZIPP-7430899
2025-03-27 21:17:41 +01:00
snyk-bot
e37646a688
fix: requirements.txt to reduce vulnerabilities
...
CI / ci (push) Failing after 1s
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-JINJA2-9292516
2025-03-06 07:52:50 +00:00
dependabot[bot]
74cb07aa64
chore(pip-prod)(deps): bump certifi from 2024.12.14 to 2025.1.31 ( #123 )
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2024.12.14 to 2025.1.31.
- [Commits](https://github.com/certifi/python-certifi/compare/2024.12.14...2025.01.31 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2025-02-03 19:05:07 +00:00
dependabot[bot]
5f7e5de7a0
chore(pip-prod)(deps): bump charset-normalizer from 3.4.0 to 3.4.1 ( #122 )
...
Bumps [charset-normalizer](https://github.com/jawah/charset_normalizer ) from 3.4.0 to 3.4.1.
- [Release notes](https://github.com/jawah/charset_normalizer/releases )
- [Changelog](https://github.com/jawah/charset_normalizer/blob/master/CHANGELOG.md )
- [Commits](https://github.com/jawah/charset_normalizer/compare/3.4.0...3.4.1 )
---
updated-dependencies:
- dependency-name: charset-normalizer
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-25 09:30:28 +00:00
dependabot[bot]
ffcfd8bec1
chore(pip-prod)(deps): bump urllib3 from 2.2.3 to 2.3.0 ( #121 )
...
Bumps [urllib3](https://github.com/urllib3/urllib3 ) from 2.2.3 to 2.3.0.
- [Release notes](https://github.com/urllib3/urllib3/releases )
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst )
- [Commits](https://github.com/urllib3/urllib3/compare/2.2.3...2.3.0 )
---
updated-dependencies:
- dependency-name: urllib3
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-23 11:57:09 +00:00
dependabot[bot]
0ceb7873d3
chore(pip-prod)(deps): bump jinja2 from 3.1.4 to 3.1.5 ( #120 )
...
Bumps [jinja2](https://github.com/pallets/jinja ) from 3.1.4 to 3.1.5.
- [Release notes](https://github.com/pallets/jinja/releases )
- [Changelog](https://github.com/pallets/jinja/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/jinja/compare/3.1.4...3.1.5 )
---
updated-dependencies:
- dependency-name: jinja2
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-23 11:53:44 +00:00
dependabot[bot]
895296908b
chore(pip-prod)(deps): bump click from 8.1.7 to 8.1.8 ( #119 )
...
Bumps [click](https://github.com/pallets/click ) from 8.1.7 to 8.1.8.
- [Release notes](https://github.com/pallets/click/releases )
- [Changelog](https://github.com/pallets/click/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/click/compare/8.1.7...8.1.8 )
---
updated-dependencies:
- dependency-name: click
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-23 11:50:27 +00:00
dependabot[bot]
9ef4fc8ccc
chore(pip-prod)(deps): bump certifi from 2024.8.30 to 2024.12.14 ( #118 )
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2024.8.30 to 2024.12.14.
- [Commits](https://github.com/certifi/python-certifi/compare/2024.08.30...2024.12.14 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-12-16 07:10:11 +00:00
dependabot[bot]
1740877258
chore(pip-prod)(deps): bump flask from 3.0.3 to 3.1.0 ( #117 )
...
Bumps [flask](https://github.com/pallets/flask ) from 3.0.3 to 3.1.0.
- [Release notes](https://github.com/pallets/flask/releases )
- [Changelog](https://github.com/pallets/flask/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/flask/compare/3.0.3...3.1.0 )
---
updated-dependencies:
- dependency-name: flask
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-14 06:46:46 +00:00
dependabot[bot]
69aeee68fd
chore(pip-prod)(deps): bump werkzeug from 3.1.2 to 3.1.3 ( #116 )
...
Bumps [werkzeug](https://github.com/pallets/werkzeug ) from 3.1.2 to 3.1.3.
- [Release notes](https://github.com/pallets/werkzeug/releases )
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/werkzeug/compare/3.1.2...3.1.3 )
---
updated-dependencies:
- dependency-name: werkzeug
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-11 06:59:40 +00:00
dependabot[bot]
30281c11db
chore(pip-prod)(deps): bump werkzeug from 3.1.1 to 3.1.2 ( #115 )
...
Bumps [werkzeug](https://github.com/pallets/werkzeug ) from 3.1.1 to 3.1.2.
- [Release notes](https://github.com/pallets/werkzeug/releases )
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/werkzeug/compare/3.1.1...3.1.2 )
---
updated-dependencies:
- dependency-name: werkzeug
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-05 07:00:57 +00:00
dependabot[bot]
36b3ece725
chore(pip-prod)(deps): bump werkzeug from 3.1.0 to 3.1.1 ( #114 )
...
Bumps [werkzeug](https://github.com/pallets/werkzeug ) from 3.1.0 to 3.1.1.
- [Release notes](https://github.com/pallets/werkzeug/releases )
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/werkzeug/compare/3.1.0...3.1.1 )
---
updated-dependencies:
- dependency-name: werkzeug
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-04 07:08:19 +00:00
dependabot[bot]
9f4c07beea
chore(pip-prod)(deps): bump werkzeug from 3.0.6 to 3.1.0 ( #113 )
...
Bumps [werkzeug](https://github.com/pallets/werkzeug ) from 3.0.6 to 3.1.0.
- [Release notes](https://github.com/pallets/werkzeug/releases )
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/werkzeug/compare/3.0.6...3.1.0 )
---
updated-dependencies:
- dependency-name: werkzeug
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-11-01 07:24:46 +00:00
dependabot[bot]
b31c99f8de
chore(pip-prod)(deps): bump flask-wtf from 1.2.1 to 1.2.2 ( #111 )
...
Bumps [flask-wtf](https://github.com/pallets-eco/flask-wtf ) from 1.2.1 to 1.2.2.
- [Release notes](https://github.com/pallets-eco/flask-wtf/releases )
- [Changelog](https://github.com/pallets-eco/flask-wtf/blob/main/docs/changes.rst )
- [Commits](https://github.com/pallets-eco/flask-wtf/compare/v1.2.1...v1.2.2 )
---
updated-dependencies:
- dependency-name: flask-wtf
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-26 22:11:04 +01:00
dependabot[bot]
15c3817c92
chore(pip-prod)(deps): bump werkzeug from 3.0.5 to 3.0.6 ( #112 )
...
Bumps [werkzeug](https://github.com/pallets/werkzeug ) from 3.0.5 to 3.0.6.
- [Release notes](https://github.com/pallets/werkzeug/releases )
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/werkzeug/compare/3.0.5...3.0.6 )
---
updated-dependencies:
- dependency-name: werkzeug
dependency-type: direct:production
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-26 10:25:36 +01:00
dependabot[bot]
f72fb0e27c
chore(pip-prod)(deps): bump werkzeug from 3.0.4 to 3.0.5 ( #110 )
...
Bumps [werkzeug](https://github.com/pallets/werkzeug ) from 3.0.4 to 3.0.5.
- [Release notes](https://github.com/pallets/werkzeug/releases )
- [Changelog](https://github.com/pallets/werkzeug/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/werkzeug/compare/3.0.4...3.0.5 )
---
updated-dependencies:
- dependency-name: werkzeug
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-25 07:12:37 +01:00
dependabot[bot]
0a31e8fa97
chore(pip-prod)(deps): bump wtforms from 3.2.0 to 3.2.1 ( #109 )
...
Bumps [wtforms](https://github.com/pallets-eco/wtforms ) from 3.2.0 to 3.2.1.
- [Release notes](https://github.com/pallets-eco/wtforms/releases )
- [Changelog](https://github.com/pallets-eco/wtforms/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets-eco/wtforms/compare/3.2.0...3.2.1 )
---
updated-dependencies:
- dependency-name: wtforms
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-22 07:01:14 +01:00
dependabot[bot]
ca2d7c6102
chore(pip-prod)(deps): bump wtforms from 3.1.2 to 3.2.0 ( #108 )
...
Bumps [wtforms](https://github.com/pallets-eco/wtforms ) from 3.1.2 to 3.2.0.
- [Release notes](https://github.com/pallets-eco/wtforms/releases )
- [Changelog](https://github.com/pallets-eco/wtforms/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets-eco/wtforms/compare/3.1.2...3.2.0 )
---
updated-dependencies:
- dependency-name: wtforms
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Co-authored-by: Luke Tainton <luke@tainton.uk >
2024-10-21 19:51:05 +01:00
dependabot[bot]
8bb091f812
chore(pip-prod)(deps): bump markupsafe from 3.0.1 to 3.0.2 ( #107 )
...
Bumps [markupsafe](https://github.com/pallets/markupsafe ) from 3.0.1 to 3.0.2.
- [Release notes](https://github.com/pallets/markupsafe/releases )
- [Changelog](https://github.com/pallets/markupsafe/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/markupsafe/compare/3.0.1...3.0.2 )
---
updated-dependencies:
- dependency-name: markupsafe
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-21 07:01:21 +01:00
dependabot[bot]
0a6e0e4aa1
chore(pip-prod)(deps): bump charset-normalizer from 3.3.2 to 3.4.0 ( #106 )
...
Bumps [charset-normalizer](https://github.com/Ousret/charset_normalizer ) from 3.3.2 to 3.4.0.
- [Release notes](https://github.com/Ousret/charset_normalizer/releases )
- [Changelog](https://github.com/jawah/charset_normalizer/blob/master/CHANGELOG.md )
- [Commits](https://github.com/Ousret/charset_normalizer/compare/3.3.2...3.4.0 )
---
updated-dependencies:
- dependency-name: charset-normalizer
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-10 07:47:41 +01:00
dependabot[bot]
94b4e417dc
chore(pip-prod)(deps): bump markupsafe from 3.0.0 to 3.0.1 ( #105 )
...
Bumps [markupsafe](https://github.com/pallets/markupsafe ) from 3.0.0 to 3.0.1.
- [Release notes](https://github.com/pallets/markupsafe/releases )
- [Changelog](https://github.com/pallets/markupsafe/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/markupsafe/compare/3.0.0...3.0.1 )
---
updated-dependencies:
- dependency-name: markupsafe
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-09 19:02:28 +01:00
dependabot[bot]
cba0917bcd
chore(pip-prod)(deps): bump markupsafe from 2.1.5 to 3.0.0 ( #104 )
...
Bumps [markupsafe](https://github.com/pallets/markupsafe ) from 2.1.5 to 3.0.0.
- [Release notes](https://github.com/pallets/markupsafe/releases )
- [Changelog](https://github.com/pallets/markupsafe/blob/main/CHANGES.rst )
- [Commits](https://github.com/pallets/markupsafe/compare/2.1.5...3.0.0 )
---
updated-dependencies:
- dependency-name: markupsafe
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-10-08 07:01:44 +01:00
dependabot[bot]
5aebbeaf0a
chore(pip-prod)(deps): bump idna from 3.8 to 3.10 ( #103 )
...
Bumps [idna](https://github.com/kjd/idna ) from 3.8 to 3.10.
- [Release notes](https://github.com/kjd/idna/releases )
- [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst )
- [Commits](https://github.com/kjd/idna/compare/v3.8...v3.10 )
---
updated-dependencies:
- dependency-name: idna
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-16 07:52:27 +01:00
dependabot[bot]
d5d9186118
chore(pip-prod)(deps): bump urllib3 from 2.2.2 to 2.2.3 ( #102 )
...
Bumps [urllib3](https://github.com/urllib3/urllib3 ) from 2.2.2 to 2.2.3.
- [Release notes](https://github.com/urllib3/urllib3/releases )
- [Changelog](https://github.com/urllib3/urllib3/blob/main/CHANGES.rst )
- [Commits](https://github.com/urllib3/urllib3/compare/2.2.2...2.2.3 )
---
updated-dependencies:
- dependency-name: urllib3
dependency-type: direct:production
update-type: version-update:semver-patch
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-13 08:34:43 +01:00
dependabot[bot]
e2de8baf17
chore(pip-prod)(deps): bump certifi from 2024.7.4 to 2024.8.30 ( #101 )
...
Bumps [certifi](https://github.com/certifi/python-certifi ) from 2024.7.4 to 2024.8.30.
- [Commits](https://github.com/certifi/python-certifi/compare/2024.07.04...2024.08.30 )
---
updated-dependencies:
- dependency-name: certifi
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-09-02 07:22:38 +01:00
dependabot[bot]
a559abd175
chore(pip-prod)(deps): bump idna from 3.7 to 3.8 ( #100 )
...
Bumps [idna](https://github.com/kjd/idna ) from 3.7 to 3.8.
- [Release notes](https://github.com/kjd/idna/releases )
- [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst )
- [Commits](https://github.com/kjd/idna/compare/v3.7...v3.8 )
---
updated-dependencies:
- dependency-name: idna
dependency-type: direct:production
update-type: version-update:semver-minor
...
Signed-off-by: dependabot[bot] <support@github.com >
Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
2024-08-26 10:24:17 +01:00
