Skip to content

Commit

Permalink
fix: gpt4all-api/gpt4all_api/requirements.txt to reduce vulnerabilities
Browse files Browse the repository at this point in the history 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-3164749
- https://snyk.io/vuln/SNYK-PYTHON-CERTIFI-5805047
- https://snyk.io/vuln/SNYK-PYTHON-REQUESTS-5595532
- https://snyk.io/vuln/SNYK-PYTHON-UJSON-2359034
- https://snyk.io/vuln/SNYK-PYTHON-UJSON-2940619
- https://snyk.io/vuln/SNYK-PYTHON-UJSON-2942122
  • Loading branch information
@snyk-bot
snyk-bot committed Mar 2, 2024
1 parent d3c8a92 commit e283374
Showing 1 changed file with 4 additions and 3 deletions.
7 changes: 4 additions & 3 deletions gpt4all-api/gpt4all_api/requirements.txt
View file
Original file line number Diff line number Diff line change
@@ -1,13 +1,14 @@
aiohttp>=3.9.2
aiofiles
pydantic>=2.4.0,<2.0.0
requests>=2.24.0
ujson>=2.0.2
requests>=2.31.0
ujson>=5.4.0
fastapi>=0.109.1
Jinja2>=3.0
gpt4all>=1.0.0
pytest
openai==0.28.0
black
isort
python-dotenv
python-dotenv
certifi>=2023.7.22 # not directly required, pinned by Snyk to avoid a vulnerability

0 comments on commit e283374

Please sign in to comment.