diff --git a/audits/slither-analyzer-requirements.audit.json b/audits/slither-analyzer-requirements.audit.json index 7a6417d9..46ebe457 100644 --- a/audits/slither-analyzer-requirements.audit.json +++ b/audits/slither-analyzer-requirements.audit.json @@ -8,7 +8,7 @@ }, "vulnerabilities": [ { - "modified": "2023-11-27T23:41:43Z", + "modified": "2023-11-30T15:30:58Z", "published": "2023-11-27T23:17:42Z", "schema_version": "1.6.0", "id": "GHSA-q3qx-c6g2-7pw2", @@ -268,11 +268,21 @@ } } ], + "severity": [ + { + "type": "CVSS_V3", + "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N" + } + ], "references": [ { "type": "WEB", "url": "https://github.com/aio-libs/aiohttp/security/advisories/GHSA-q3qx-c6g2-7pw2" }, + { + "type": "ADVISORY", + "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-49081" + }, { "type": "WEB", "url": "https://gist.github.com/jnovikov/184afb593d9c2114d77f508e0ccd508e" @@ -283,11 +293,13 @@ } ], "database_specific": { - "cwe_ids": [], + "cwe_ids": [ + "CWE-20" + ], "github_reviewed": true, "github_reviewed_at": "2023-11-27T23:17:42Z", - "nvd_published_at": null, - "severity": "LOW" + "nvd_published_at": "2023-11-30T07:15:08Z", + "severity": "HIGH" } }, { diff --git a/requirements/awscli-requirements.txt b/requirements/awscli-requirements.txt index fef5551b..1fe93d1e 100644 --- a/requirements/awscli-requirements.txt +++ b/requirements/awscli-requirements.txt @@ -1,4 +1,4 @@ -awscrt==0.19.18 +awscrt==0.19.19 colorama==0.4.6 cryptography==40.0.1 distro==1.8.0 diff --git a/requirements/checkov-requirements.txt b/requirements/checkov-requirements.txt index bf791169..ce5aef83 100644 --- a/requirements/checkov-requirements.txt +++ b/requirements/checkov-requirements.txt @@ -1,17 +1,17 @@ aiodns==3.1.1 -aiohttp==3.9.0 +aiohttp==3.9.1 aiomultiprocess==0.9.0 aiosignal==1.3.1 annotated-types==0.6.0 attrs==23.1.0 bc-detect-secrets==1.4.30 -bc-jsonpath-ng==1.5.9 +bc-jsonpath-ng==1.6.1 bc-python-hcl2==0.4.1 beartype==0.16.4 beautifulsoup4==4.12.2 boolean-py==4.0 -boto3==1.29.6 -botocore==1.32.6 +boto3==1.33.4 +botocore==1.33.4 cached-property==1.5.2 cachetools==5.3.2 charset-normalizer==3.3.2 @@ -29,13 +29,13 @@ dpath==2.1.3 frozenlist==1.4.0 gitdb==4.0.11 gitpython==3.1.40 -idna==3.4 +idna==3.6 igraph==0.10.8 importlib-metadata==6.8.0 isodate==0.6.1 jmespath==1.0.1 jsonschema==4.20.0 -jsonschema-specifications==2023.11.1 +jsonschema-specifications==2023.11.2 junit-xml==1.9 lark==1.1.8 license-expression==30.1.1 @@ -52,12 +52,12 @@ pydantic==2.5.2 pydantic-core==2.14.5 python-dateutil==2.8.2 rdflib==7.0.0 -referencing==0.31.0 +referencing==0.31.1 regex==2023.10.3 requests==2.31.0 -rpds-py==0.13.1 +rpds-py==0.13.2 rustworkx==0.13.2 -s3transfer==0.7.0 +s3transfer==0.8.2 schema==0.7.5 semantic-version==2.10.0 smmap==5.0.1 diff --git a/requirements/dvc-requirements.txt b/requirements/dvc-requirements.txt index 8b798e61..4e6c7943 100644 --- a/requirements/dvc-requirements.txt +++ b/requirements/dvc-requirements.txt @@ -63,7 +63,7 @@ gcsfs==2023.9.2 gitdb==4.0.11 gitpython==3.1.40 google-api-core==2.14.0 -google-api-python-client==2.108.0 +google-api-python-client==2.109.0 google-auth==2.23.4 google-auth-httplib2==0.1.1 google-auth-oauthlib==1.1.0 diff --git a/requirements/pipgrip-requirements.txt b/requirements/pipgrip-requirements.txt index 40170da5..fce6080e 100644 --- a/requirements/pipgrip-requirements.txt +++ b/requirements/pipgrip-requirements.txt @@ -1,2 +1,2 @@ anytree==2.12.1 -wheel==0.41.3 +wheel==0.42.0 diff --git a/requirements/snapcraft-requirements.txt b/requirements/snapcraft-requirements.txt index 386ebbb5..65ed505f 100644 --- a/requirements/snapcraft-requirements.txt +++ b/requirements/snapcraft-requirements.txt @@ -4,8 +4,8 @@ craft-archives==1.1.3 craft-cli==2.0.1 craft-grammar==1.1.1 craft-parts==1.23.0 -craft-providers==1.14.1 -craft-store==2.4.0 +craft-providers==1.19.2 +craft-store==2.5.0 deprecated==1.2.14 distro==1.8.0 docutils==0.19