Skip to content

Commit

Permalink
BUG: Update requirements-docs.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
Update requirements-docs.txt to explicitly require requests>=2.32.0
addressing CVE-2024-35195 (Requests `Session` object does not verify
requests after making first request with verify=False)

See https://www.cve.org/CVERecord?id=CVE-2024-35195
and https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-6928867
  • Loading branch information
@snyk-bot @jcfr
snyk-bot authored and jcfr committed May 23, 2024
1 parent 8b6ddf8 commit 333c3ae
Showing 1 changed file with 1 addition and 0 deletions.
1 change: 1 addition & 0 deletions requirements-docs.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -10,3 +10,4 @@ sphinx-jsonschema
sphinx_markdown_tables>=0.0.17
sphinx-notfound-page
sphinx_rtd_theme>=0.5.2
requests>=2.32.0 # not directly required, pinned by Snyk to avoid a vulnerability

0 comments on commit 333c3ae

Please sign in to comment.