From f1e08e4902268d4a752bb7f8ce48fc596e49326d Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Wed, 27 Nov 2024 05:03:44 +0000 Subject: [PATCH] fix: binder/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-TORNADO-8400708 --- binder/requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/binder/requirements.txt b/binder/requirements.txt index 7a5b0416ea9..697945a6640 100644 --- a/binder/requirements.txt +++ b/binder/requirements.txt @@ -19,3 +19,4 @@ kaleido scikit-learn umap-learn wget +tornado>=6.4.2 # not directly required, pinned by Snyk to avoid a vulnerability