jan/openreplay
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: ee/connectors/deploy/requirements_bigquery.txt to reduce vulnerabilities

Browse source 
The following vulnerabilities are fixed by pinning transitive dependencies:
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321964
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321966
- https://snyk.io/vuln/SNYK-PYTHON-NUMPY-2321970
- https://snyk.io/vuln/SNYK-PYTHON-PYARROW-6052811
- https://snyk.io/vuln/SNYK-PYTHON-SETUPTOOLS-3180412
This commit is contained in:
snyk-bot 2024-01-11 14:30:40 +00:00
parent 790e1001b7
commit 7d36bda20b
No known key found for this signature in database
GPG key ID: 5009E0832F4D3DD3
1 changed files with 4 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

5
ee/connectors/deploy/requirements_bigquery.txt
View file

@ -4,4 +4,7 @@ SQLAlchemy==1.4.43
google-cloud-bigquery==3.4.2 google-cloud-bigquery==3.4.2
pandas==1.5.1 pandas==1.5.1
PyYAML==6.0 PyYAML==6.0
pandas-gbq==0.19.2 pandas-gbq==0.19.2
numpy>=1.22.2 # not directly required, pinned by Snyk to avoid a vulnerability
pyarrow>=14.0.1 # not directly required, pinned by Snyk to avoid a vulnerability
setuptools>=65.5.1 # not directly required, pinned by Snyk to avoid a vulnerability