From a6f7ae95a233b7c10f14c6736b513c67d4aea582 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Mon, 2 Oct 2023 00:15:30 +0000 Subject: [PATCH 1/8] fix: upgrade vue from 2.6.12 to 2.7.14 Snyk has created this PR to upgrade vue from 2.6.12 to 2.7.14. See this package in npm: https://www.npmjs.com/package/vue See this project in Snyk: https://app.snyk.io/org/swadhinbiswas/project/c1bd4019-564f-4a70-b38f-b99d91c469a9?utm_source=github&utm_medium=referral&page=upgrade-pr --- etc/quiz-app/package.json | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/etc/quiz-app/package.json b/etc/quiz-app/package.json index 321af252..efc2c042 100644 --- a/etc/quiz-app/package.json +++ b/etc/quiz-app/package.json @@ -9,7 +9,7 @@ }, "dependencies": { "core-js": "^3.6.5", - "vue": "^2.6.11", + "vue": "^2.7.14", "vue-i18n": "^8.22.2", "vue-router": "^3.4.9" }, From 24e5789342230cdc44186d81e15fa117bc973ccb Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Tue, 3 Oct 2023 08:30:11 +0000 Subject: [PATCH 2/8] fix: binder/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-NLTK-5926697 - https://snyk.io/vuln/SNYK-PYTHON-NLTK-5926698 --- binder/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/binder/requirements.txt b/binder/requirements.txt index 032e3b15..393e2f58 100644 --- a/binder/requirements.txt +++ b/binder/requirements.txt @@ -3,7 +3,7 @@ gym==0.23.1 huggingface==0.0.1 imageio==2.16.2 keras==2.8.0 -nltk==3.6.6 +nltk==3.8.1 pandas==1.4.2 pillow==9.1.1 pygame==2.1.2 From 1aa604298613c40231f795012409f44396d01bcc Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 21 Jan 2024 15:55:10 +0000 Subject: [PATCH 3/8] fix: lessons/5-NLP/requirements-pytorch.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918 --- lessons/5-NLP/requirements-pytorch.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lessons/5-NLP/requirements-pytorch.txt b/lessons/5-NLP/requirements-pytorch.txt index 6fb1add4..8564f104 100644 --- a/lessons/5-NLP/requirements-pytorch.txt +++ b/lessons/5-NLP/requirements-pytorch.txt @@ -4,7 +4,7 @@ matplotlib nltk==3.5 numpy==1.22.0 opencv-python==4.5.1.48 -Pillow==7.1.2 +Pillow==10.2.0 scikit-learn scipy torch==1.8.1 From 4b338c7b223ef2f8d6e53b10ae3711b6980d8aa8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 21 Jan 2024 22:49:55 +0000 Subject: [PATCH 4/8] fix: binder/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918 --- binder/requirements.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/binder/requirements.txt b/binder/requirements.txt index 032e3b15..8248fe48 100644 --- a/binder/requirements.txt +++ b/binder/requirements.txt @@ -5,7 +5,7 @@ imageio==2.16.2 keras==2.8.0 nltk==3.6.6 pandas==1.4.2 -pillow==9.1.1 +pillow==10.2.0 pygame==2.1.2 scikit-image==0.19.2 seaborn==0.11.2 From 69ab76780559cd74a1af996e65f6992abb6f08bc Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Sun, 21 Jan 2024 22:57:34 +0000 Subject: [PATCH 5/8] fix: lessons/5-NLP/requirements-tf.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6182918 --- lessons/5-NLP/requirements-tf.txt | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/lessons/5-NLP/requirements-tf.txt b/lessons/5-NLP/requirements-tf.txt index 1788c407..b530120e 100644 --- a/lessons/5-NLP/requirements-tf.txt +++ b/lessons/5-NLP/requirements-tf.txt @@ -4,7 +4,7 @@ matplotlib nltk==3.5 numpy==1.22.0 opencv-python==4.5.1.48 -Pillow==7.1.2 +Pillow==10.2.0 scikit-learn scipy TensorFlow From 210c02a7070485c80732f5c4a2210a9aaf6c13f8 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 1 Feb 2024 15:38:55 +0000 Subject: [PATCH 6/8] fix: lessons/5-NLP/requirements-tf.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986 - https://snyk.io/vuln/SNYK-PYTHON-TRANSFORMERS-6220003 --- lessons/5-NLP/requirements-tf.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/lessons/5-NLP/requirements-tf.txt b/lessons/5-NLP/requirements-tf.txt index 1788c407..80ed7b18 100644 --- a/lessons/5-NLP/requirements-tf.txt +++ b/lessons/5-NLP/requirements-tf.txt @@ -4,10 +4,10 @@ matplotlib nltk==3.5 numpy==1.22.0 opencv-python==4.5.1.48 -Pillow==7.1.2 +Pillow==10.2.0 scikit-learn scipy TensorFlow TensorFlow_datasets TensorFlow_text -transformers==4.30.0 \ No newline at end of file +transformers==4.37.0 \ No newline at end of file From 833ac1a26777f65598f0bd635dff2b66c902bc3b Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Thu, 1 Feb 2024 17:18:06 +0000 Subject: [PATCH 7/8] fix: binder/requirements.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986 - https://snyk.io/vuln/SNYK-PYTHON-TRANSFORMERS-6220003 --- binder/requirements.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/binder/requirements.txt b/binder/requirements.txt index 032e3b15..d68b8daf 100644 --- a/binder/requirements.txt +++ b/binder/requirements.txt @@ -5,7 +5,7 @@ imageio==2.16.2 keras==2.8.0 nltk==3.6.6 pandas==1.4.2 -pillow==9.1.1 +pillow==10.2.0 pygame==2.1.2 scikit-image==0.19.2 seaborn==0.11.2 @@ -19,4 +19,4 @@ tensorboard==2.8.0 tokenizers==0.10.3 torchinfo==0.0.8 tqdm==4.62.3 -transformers==4.30.0 +transformers==4.37.0 From 1be094f4bcd032bece11f5f7b46c50619e0aa8c4 Mon Sep 17 00:00:00 2001 From: snyk-bot Date: Fri, 2 Feb 2024 01:44:46 +0000 Subject: [PATCH 8/8] fix: lessons/5-NLP/requirements-pytorch.txt to reduce vulnerabilities The following vulnerabilities are fixed by pinning transitive dependencies: - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219984 - https://snyk.io/vuln/SNYK-PYTHON-PILLOW-6219986 - https://snyk.io/vuln/SNYK-PYTHON-TRANSFORMERS-6220003 --- lessons/5-NLP/requirements-pytorch.txt | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/lessons/5-NLP/requirements-pytorch.txt b/lessons/5-NLP/requirements-pytorch.txt index 6fb1add4..1953c0b9 100644 --- a/lessons/5-NLP/requirements-pytorch.txt +++ b/lessons/5-NLP/requirements-pytorch.txt @@ -4,7 +4,7 @@ matplotlib nltk==3.5 numpy==1.22.0 opencv-python==4.5.1.48 -Pillow==7.1.2 +Pillow==10.2.0 scikit-learn scipy torch==1.8.1 @@ -12,4 +12,4 @@ torchaudio==0.8.1 torchinfo==0.0.8 torchtext==0.9.1 torchvision==0.9.1 -transformers==4.30.0 \ No newline at end of file +transformers==4.37.0 \ No newline at end of file