From 53acd5b7bd298c6bdb91b6a8de450e0ec2f2b794 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 3 Nov 2025 19:19:48 +0000 Subject: [PATCH] fix: auth-service/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-STARLETTE-13733964 --- auth-service/requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/auth-service/requirements.txt b/auth-service/requirements.txt index f736fd4..6848fcc 100644 --- a/auth-service/requirements.txt +++ b/auth-service/requirements.txt @@ -28,3 +28,4 @@ anyio>=4.4.0 # not directly required, pinned by Snyk to avoid a vulnerability protobuf>=4.25.8 # not directly required, pinned by Snyk to avoid a vulnerability setuptools>=78.1.1 # not directly required, pinned by Snyk to avoid a vulnerability # starlette>=0.40.0,<0.42.0 # not directly required, pinned by Snyk to avoid a vulnerability - conflicts with FastAPI requirements +starlette>=0.49.1 # not directly required, pinned by Snyk to avoid a vulnerability