kennethreitz/pipenv
1
0
Fork 0
mirror of https://github.com/kennethreitz/pipenv.git synced 2026-06-05 22:50:18 +00:00
Code Issues Packages Projects Releases Wiki Activity

Bump certifi from 2023.5.7 to 2023.7.22

Browse Source 
There is a securiy vulnerability for certifi versions <2023.7.22 (see
details here: https://nvd.nist.gov/vuln/detail/CVE-2023-37920). Even
though this version is only in /examples, it gets detected and flagged
by static analysis tools when scanning docker images that have the
latest version of pipenv installed.
This commit is contained in:
Yuri Shevtsov
2023-09-19 20:17:24 -04:00
parent cdf41def30
commit ee0653986a
1 changed files with 5 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
examples/Pipfile.lock
Generated
+5 -4
View File
@@ -1,7 +1,7 @@
{
"_meta": {
"hash": {
"sha256": "8d14434df45e0ef884d6c3f6e8048ba72335637a8631cc44792f52fd20b6f97a"
"sha256": "6a44fe37aaf35b2b653e3e4ff422efc6370108bf8a09a43858dfef57f7cd41a8"
},
"pipfile-spec": 6,
"requires": {},
@@ -16,11 +16,12 @@
"default": {
"certifi": {
"hashes": [
"sha256:0f0d56dc5a6ad56fd4ba36484d6cc34451e1c6548c61daad8c320169f91eddc7",
"sha256:c6c2e98f5c7869efca1f8916fed228dd91539f9f1b444c314c06eef02980c716"
"sha256:539cc1d13202e33ca466e88b2807e29f4c13049d6d87031a3c110744495cb082",
"sha256:92d6037539857d8206b8f6ae472e8b77db8058fec5937a1ef3f54304089edbb9"
],
"index": "pypi",
"markers": "python_version >= '3.6'",
"version": "==2023.5.7"
"version": "==2023.7.22"
},
"charset-normalizer": {
"hashes": [