From 85167b690e80ef39e11ef6be84efb164418e8cbd Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 20 Jan 2026 02:58:34 +0000 Subject: [PATCH] fix: auth-service/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PYASN1-15032639 --- auth-service/requirements.txt | 1 + 1 file changed, 1 insertion(+) diff --git a/auth-service/requirements.txt b/auth-service/requirements.txt index f736fd4..c7efd82 100644 --- a/auth-service/requirements.txt +++ b/auth-service/requirements.txt @@ -28,3 +28,4 @@ anyio>=4.4.0 # not directly required, pinned by Snyk to avoid a vulnerability protobuf>=4.25.8 # not directly required, pinned by Snyk to avoid a vulnerability setuptools>=78.1.1 # not directly required, pinned by Snyk to avoid a vulnerability # starlette>=0.40.0,<0.42.0 # not directly required, pinned by Snyk to avoid a vulnerability - conflicts with FastAPI requirements +pyasn1>=0.6.2 # not directly required, pinned by Snyk to avoid a vulnerability