From 16151dbb4ec2098f66c18d25da7afc711fefa2a6 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 15 Aug 2023 20:23:06 +0000 Subject: [PATCH] fix: cvat/requirements/development.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-5840803 --- cvat/requirements/development.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/cvat/requirements/development.txt b/cvat/requirements/development.txt index d13dc8403ae..fe7f9b2163d 100644 --- a/cvat/requirements/development.txt +++ b/cvat/requirements/development.txt @@ -7,3 +7,4 @@ rope==0.17.0 django-extensions==3.0.8 Werkzeug==1.0.1 snakeviz==2.1.0 +tornado>=6.3.3 # not directly required, pinned by Snyk to avoid a vulnerability