Latest data: Fri Nov 17 08:02:47 UTC 2023

audits/http-prompt-requirements.audit.json

@@ -0,0 +1,139 @@
+[
+  {
+    "package": {
+      "name": "httpie",
+      "version": "3.2.2",
+      "ecosystem": "PyPI",
+      "commit": ""
+    },
+    "vulnerabilities": [
+      {
+        "modified": "2023-11-16T22:41:32Z",
+        "published": "2023-11-16T18:30:31Z",
+        "schema_version": "1.6.0",
+        "id": "GHSA-8r96-8889-qg2x",
+        "aliases": [
+          "CVE-2023-48052"
+        ],
+        "summary": "HTTPie allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack",
+        "details": "Missing SSL certificate validation in HTTPie v3.2.2 allows attackers to eavesdrop on communications between the host and server via a man-in-the-middle attack.",
+        "affected": [
+          {
+            "package": {
+              "ecosystem": "PyPI",
+              "name": "httpie",
+              "purl": "pkg:pypi/httpie"
+            },
+            "ranges": [
+              {
+                "type": "ECOSYSTEM",
+                "events": [
+                  {
+                    "introduced": "0"
+                  },
+                  {
+                    "last_affected": "3.2.2"
+                  }
+                ]
+              }
+            ],
+            "versions": [
+              "0.1",
+              "0.1.1",
+              "0.1.2",
+              "0.1.3",
+              "0.1.4",
+              "0.1.5",
+              "0.1.6",
+              "0.2.0",
+              "0.2.1",
+              "0.2.2",
+              "0.2.3",
+              "0.2.4",
+              "0.2.4dev",
+              "0.2.5",
+              "0.2.6",
+              "0.2.7",
+              "0.3.0",
+              "0.3.1",
+              "0.4.0",
+              "0.4.1",
+              "0.5.0",
+              "0.5.1",
+              "0.6.0",
+              "0.7.0",
+              "0.7.2",
+              "0.8.0",
+              "0.9.0",
+              "0.9.1",
+              "0.9.2",
+              "0.9.3",
+              "0.9.4",
+              "0.9.5",
+              "0.9.6",
+              "0.9.7",
+              "0.9.8",
+              "0.9.9",
+              "1.0.0",
+              "1.0.2",
+              "1.0.3",
+              "2.0.0",
+              "2.1.0",
+              "2.2.0",
+              "2.3.0",
+              "2.4.0",
+              "2.5.0",
+              "2.6.0",
+              "3.0.0",
+              "3.0.1",
+              "3.0.2",
+              "3.1.0",
+              "3.2.0",
+              "3.2.1",
+              "3.2.2"
+            ],
+            "database_specific": {
+              "source": "https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2023/11/GHSA-8r96-8889-qg2x/GHSA-8r96-8889-qg2x.json"
+            }
+          }
+        ],
+        "references": [
+          {
+            "type": "ADVISORY",
+            "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-48052"
+          },
+          {
+            "type": "PACKAGE",
+            "url": "https://github.com/httpie/cli"
+          },
+          {
+            "type": "WEB",
+            "url": "https://github.com/httpie/cli/blob/master/httpie/client.py#L33"
+          },
+          {
+            "type": "WEB",
+            "url": "https://github.com/httpie/cli/blob/master/httpie/internal/update_warnings.py#L44"
+          },
+          {
+            "type": "WEB",
+            "url": "https://gxx777.github.io/HTTPie_3.2.2_Cryptographic_API_Misuse_Vulnerability.md"
+          }
+        ],
+        "database_specific": {
+          "cwe_ids": [],
+          "github_reviewed": true,
+          "github_reviewed_at": "2023-11-16T22:16:44Z",
+          "nvd_published_at": "2023-11-16T18:15:07Z",
+          "severity": "MODERATE"
+        }
+      }
+    ],
+    "groups": [
+      {
+        "ids": [
+          "GHSA-8r96-8889-qg2x"
+        ]
+      }
+    ]
+  }
+]

requirements/arjun-requirements.txt

@@ -1,5 +1,5 @@
-charset-normalizer==3.3.0
+charset-normalizer==3.3.2
 dicttoxml==1.7.16
 idna==3.4
 requests==2.31.0
-urllib3==2.0.7
+urllib3==2.1.0

requirements/aws-sam-cli-requirements.txt

@@ -1,15 +1,15 @@
 annotated-types==0.6.0
 arrow==1.3.0
 attrs==23.1.0
-aws-lambda-builders==1.41.0
-aws-sam-translator==1.79.0
+aws-lambda-builders==1.42.0
+aws-sam-translator==1.80.0
 binaryornot==0.4.4
 blinker==1.7.0
-boto3==1.29.0
-boto3-stubs==1.28.80
-botocore==1.32.0
-botocore-stubs==1.32.0
-cfn-lint==0.83.2
+boto3==1.29.2
+boto3-stubs==1.29.0
+botocore==1.32.2
+botocore-stubs==1.32.2
+cfn-lint==0.83.3
 chardet==5.2.0
 charset-normalizer==3.3.2
 chevron==0.14.0
@@ -33,32 +33,32 @@ markdown-it-py==3.0.0
 markupsafe==2.1.3
 mdurl==0.1.2
 mpmath==1.3.0
-mypy-boto3-apigateway==1.28.36
-mypy-boto3-cloudformation==1.28.83
-mypy-boto3-ecr==1.28.45
-mypy-boto3-iam==1.28.79
-mypy-boto3-kinesis==1.28.36
-mypy-boto3-lambda==1.28.83
-mypy-boto3-s3==1.28.55
-mypy-boto3-schemas==1.28.36
-mypy-boto3-secretsmanager==1.28.67
-mypy-boto3-signer==1.28.36
-mypy-boto3-sqs==1.28.82
-mypy-boto3-stepfunctions==1.28.36
-mypy-boto3-sts==1.28.58
-mypy-boto3-xray==1.28.64
+mypy-boto3-apigateway==1.29.0
+mypy-boto3-cloudformation==1.29.0
+mypy-boto3-ecr==1.29.0
+mypy-boto3-iam==1.29.0
+mypy-boto3-kinesis==1.29.0
+mypy-boto3-lambda==1.29.2
+mypy-boto3-s3==1.29.0
+mypy-boto3-schemas==1.29.0
+mypy-boto3-secretsmanager==1.29.0
+mypy-boto3-signer==1.29.0
+mypy-boto3-sqs==1.29.0
+mypy-boto3-stepfunctions==1.29.0
+mypy-boto3-sts==1.29.0
+mypy-boto3-xray==1.29.0
 networkx==3.2.1
 pbr==6.0.0
-pydantic==2.5.0
-pydantic-core==2.14.1
+pydantic==2.5.1
+pydantic-core==2.14.3
 pyopenssl==23.3.0
 python-dateutil==2.8.2
 python-slugify==8.0.1
 referencing==0.31.0
 regex==2023.10.3
 requests==2.31.0
 rich==13.6.0
-rpds-py==0.12.0
+rpds-py==0.13.0
 ruamel-yaml==0.18.5
 ruamel-yaml-clib==0.2.8
 s3transfer==0.7.0

requirements/awscli-local-requirements.txt

@@ -0,0 +1,7 @@
+boto3==1.29.1
+botocore==1.32.1
+jmespath==1.0.1
+localstack-client==2.5
+python-dateutil==2.8.2
+s3transfer==0.7.0
+urllib3==2.0.7

requirements/b2-tools-requirements.txt

@@ -1,6 +1,6 @@
 arrow==1.3.0
-b2sdk==1.24.1
-charset-normalizer==3.3.1
+b2sdk==1.25.0
+charset-normalizer==3.3.2
 idna==3.4
 logfury==1.0.1
 phx-class-registry==4.1.0
@@ -9,4 +9,4 @@ requests==2.31.0
 rst2ansi==0.1.5
 tqdm==4.65.2
 types-python-dateutil==2.8.19.14
-urllib3==2.0.7
+urllib3==2.1.0

requirements/localstack-requirements.txt

@@ -1,25 +1,25 @@
-cachetools==5.0.0
-charset-normalizer==3.3.0
+cachetools==5.3.2
+charset-normalizer==3.3.2
 dill==0.3.6
 dnslib==0.9.23
 dnspython==2.4.2
 ecdsa==0.18.0
 idna==3.4
-localstack-core==2.3.2
-localstack-ext==2.3.2
+localstack-core==3.0.0
+localstack-ext==3.0.0
 markdown-it-py==3.0.0
 mdurl==0.1.2
-pbr==5.11.1
-plux==1.4.0
+pbr==6.0.0
+plux==1.5.0
 pyaes==1.6.1
 pyasn1==0.5.0
 python-dateutil==2.8.2
 python-dotenv==1.0.0
 python-jose==3.3.0
 requests==2.31.0
-rich==13.6.0
+rich==13.7.0
 rsa==4.9
 semver==3.0.2
 stevedore==5.1.0
 tailer==0.4.1
-urllib3==2.0.7
+urllib3==2.1.0

requirements/moto-requirements.txt

@@ -10,7 +10,7 @@ idna==3.4
 itsdangerous==2.1.2
 jinja2==3.1.2
 jsondiff==2.0.0
-jsonschema-path==0.3.1
+jsonschema-path==0.3.2
 lazy-object-proxy==1.9.0
 multipart==0.2.4
 openapi-schema-validator==0.6.2
@@ -20,7 +20,7 @@ py-partiql-parser==0.4.2
 pyasn1==0.5.0
 python-jose==3.3.0
 requests==2.31.0
-responses==0.24.0
+responses==0.24.1
 rfc3339-validator==0.1.4
 rsa==4.9
 sshpubkeys==3.3.1

requirements/ocrmypdf-requirements.txt

@@ -1,7 +1,11 @@
 charset-normalizer==3.3.2
+deprecated==1.2.14
+deprecation==2.1.0
 markdown-it-py==3.0.0
 mdurl==0.1.2
 pdfminer-six==20221105
+pikepdf==8.7.1
 pluggy==1.3.0
 reportlab==4.0.7
-rich==13.6.0
+rich==13.7.0
+wrapt==1.16.0

requirements/pdm-requirements.txt

@@ -11,10 +11,10 @@ python-dotenv==1.0.0
 requests==2.31.0
 requests-toolbelt==1.0.0
 resolvelib==1.0.1
-rich==13.6.0
+rich==13.7.0
 shellingham==1.5.4
-tomlkit==0.12.2
+tomlkit==0.12.3
 truststore==0.8.0
 unearth==0.12.1
-urllib3==2.0.7
+urllib3==2.1.0
 wheel==0.41.3

requirements/poetry-requirements.txt

@@ -4,7 +4,7 @@ charset-normalizer==3.3.2
 cleo==2.1.0
 crashtest==0.4.1
 dulwich==0.21.6
-fastjsonschema==2.18.1
+fastjsonschema==2.19.0
 idna==3.4
 installer==0.7.0
 msgpack==1.0.7
@@ -18,7 +18,7 @@ rapidfuzz==3.5.2
 requests==2.31.0
 requests-toolbelt==1.0.0
 shellingham==1.5.4
-tomlkit==0.12.2
-trove-classifiers==2023.10.18
-urllib3==2.0.7
+tomlkit==0.12.3
+trove-classifiers==2023.11.14
+urllib3==2.1.0
 xattr==0.10.1

requirements/prowler-requirements.txt

@@ -38,7 +38,7 @@ msrest==0.7.1
 msrestazure==0.6.4
 oauthlib==3.2.2
 portalocker==2.8.2
-protobuf==4.25.0
+protobuf==4.25.1
 pyasn1==0.5.0
 pyasn1-modules==0.3.0
 pydantic==1.10.13

requirements/semgrep-requirements.txt

@@ -8,15 +8,15 @@ defusedxml==0.7.1
 face==22.0.0
 glom==22.1.0
 idna==3.4
-jsonschema==4.19.2
+jsonschema==4.20.0
 jsonschema-specifications==2023.11.1
 markdown-it-py==3.0.0
 mdurl==0.1.2
 peewee==3.17.0
 referencing==0.31.0
 requests==2.31.0
-rich==13.6.0
-rpds-py==0.12.0
+rich==13.7.0
+rpds-py==0.13.0
 ruamel-yaml==0.17.40
 ruamel-yaml-clib==0.2.8
 tomli==2.0.1

requirements/terraform-local-requirements.txt

@@ -0,0 +1,9 @@
+boto3==1.29.2
+botocore==1.32.2
+jmespath==1.0.1
+lark==1.1.8
+localstack-client==2.5
+python-dateutil==2.8.2
+python-hcl2==4.3.2
+s3transfer==0.7.0
+urllib3==2.0.7

requirements/toot-requirements.txt

@@ -1,9 +1,9 @@
 beautifulsoup4==4.12.2
-charset-normalizer==3.3.0
+charset-normalizer==3.3.2
 idna==3.4
 requests==2.31.0
 soupsieve==2.5
-tomlkit==0.12.1
-urllib3==2.0.7
-urwid==2.2.2
-wcwidth==0.2.8
+tomlkit==0.12.3
+urllib3==2.1.0
+urwid==2.2.3
+wcwidth==0.2.10