[Snyk] Security upgrade jinja2 from 2.11.2 to 3.1.5 #215

Security Report

You have successfully remediated 13 vulnerabilities, but introduced 21 new vulnerabilities in this branch.

❌ New vulnerabilities:

CVE	Severity	CVSS Score	Vulnerable Library	Suggested Fix	Issue
CVE-2021-41945 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ httpx-0.16.1-py3-none-any.whl (Vulnerable Library)	Critical	9.1	httpx-0.16.1-py3-none-any.whl	Upgrade to version: httpx - 0.23.0	None
CVE-2020-36242 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl (Vulnerable Library)	Critical	9.1	cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl	Upgrade to version: cryptography - 3.3.2	None
CVE-2021-32677 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ fastapi-0.61.1-py3-none-any.whl (Vulnerable Library)	High	8.2	fastapi-0.61.1-py3-none-any.whl	Upgrade to version: fastapi - 0.65.2	None
CVE-2023-4807 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl (Vulnerable Library)	High	7.8	cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl	Upgrade to version: openssl-3.0.11,openssl-3.1.3,OpenSSL_1_1_1w, cryptography - 41.0.4	None
WS-2023-0037 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ starlette-0.13.6-py3-none-any.whl (Vulnerable Library)	High	7.5	starlette-0.13.6-py3-none-any.whl	Upgrade to version: starlette - 0.25.0	None
CVE-2023-50782 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl (Vulnerable Library)	High	7.5	cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl	Upgrade to version: cryptography - 42.0.0	None
CVE-2023-38325 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl (Vulnerable Library)	High	7.5	cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl	Upgrade to version: cryptography - 41.0.2	None
CVE-2023-30798 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ starlette-0.13.6-py3-none-any.whl (Vulnerable Library)	High	7.5	starlette-0.13.6-py3-none-any.whl	Upgrade to version: starlette - 0.25.0	None
CVE-2023-29159 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ starlette-0.13.6-py3-none-any.whl (Vulnerable Library)	High	7.5	starlette-0.13.6-py3-none-any.whl	Upgrade to version: starlette - 0.27.0	None
CVE-2024-1135 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ gunicorn-20.0.4-py2.py3-none-any.whl (Vulnerable Library)	High	7.4	gunicorn-20.0.4-py2.py3-none-any.whl	Upgrade to version: gunicorn - 22.0.0	None
CVE-2023-0286 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl (Vulnerable Library)	High	7.4	cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl	Upgrade to version: openssl-3.0.8;cryptography - 39.0.1;openssl-src - 111.25.0+1.1.1t,300.0.12+3.0.8	None
CVE-2023-2650 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl (Vulnerable Library)	Medium	6.5	cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl	Upgrade to version: OpenSSL_1_1_1u,openssl-3.0.9,openssl-3.1.1, cryptography - 41.0.0	None
CVE-2023-32681 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ requests-2.24.0-py2.py3-none-any.whl (Vulnerable Library)	Medium	6.1	requests-2.24.0-py2.py3-none-any.whl	Upgrade to version: requests -2.31.0	None
CVE-2024-3772 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ pydantic-1.6.1-cp38-cp38-manylinux2014_x86_64.whl (Vulnerable Library)	Medium	5.9	pydantic-1.6.1-cp38-cp38-manylinux2014_x86_64.whl	Upgrade to version: Pydantic - 1.10.13,2.4.0	None
CVE-2023-49083 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl (Vulnerable Library)	Medium	5.9	cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl	Upgrade to version: cryptography - 41.0.6	None
CVE-2024-35195 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ requests-2.24.0-py2.py3-none-any.whl (Vulnerable Library)	Medium	5.6	requests-2.24.0-py2.py3-none-any.whl	Upgrade to version: requests - 2.32.0	None
CVE-2023-3446 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl (Vulnerable Library)	Medium	5.3	cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl	Upgrade to version: openssl-3.0.10,openssl-3.1.2, cryptography - 41.0.3	None
CVE-2023-23931 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl (Vulnerable Library)	Medium	4.8	cryptography-3.2.1-cp35-abi3-manylinux2010_x86_64.whl	Upgrade to version: cryptography - 39.0.1	None
WS-2023-0138 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ starlette-0.13.6-py3-none-any.whl (Vulnerable Library)	Low	3.7	starlette-0.13.6-py3-none-any.whl	Upgrade to version: starlette - 0.27.0	None
CVE-2021-29510 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ pydantic-1.6.1-cp38-cp38-manylinux2014_x86_64.whl (Vulnerable Library)	Low	3.3	pydantic-1.6.1-cp38-cp38-manylinux2014_x86_64.whl	Upgrade to version: v1.6.2,v1.7.4,v1.8.2	None
CVE-2024-47874 Path to dependency file: /requirements.txt Path to vulnerable library: /requirements.txt Dependency Hierarchy: -> ❌ starlette-0.13.6-py3-none-any.whl (Vulnerable Library)	Low	0.0	starlette-0.13.6-py3-none-any.whl	Upgrade to version: starlette - 0.40.0	None

✔️ Remediated vulnerabilities:

CVE	Vulnerable Library
CVE-2023-2650	cryptography-3.2.1-cp27-cp27mu-manylinux2010_x86_64.whl
CVE-2023-0286	cryptography-3.2.1-cp27-cp27mu-manylinux2010_x86_64.whl
CVE-2020-14422	ipaddress-1.0.23-py2.py3-none-any.whl
CVE-2024-22195	Jinja2-2.11.2-py2.py3-none-any.whl
CVE-2023-49083	cryptography-3.2.1-cp27-cp27mu-manylinux2010_x86_64.whl
CVE-2023-23931	cryptography-3.2.1-cp27-cp27mu-manylinux2010_x86_64.whl
CVE-2024-34064	Jinja2-2.11.2-py2.py3-none-any.whl
CVE-2023-3446	cryptography-3.2.1-cp27-cp27mu-manylinux2010_x86_64.whl
CVE-2020-36242	cryptography-3.2.1-cp27-cp27mu-manylinux2010_x86_64.whl
CVE-2020-28493	Jinja2-2.11.2-py2.py3-none-any.whl
CVE-2023-4807	cryptography-3.2.1-cp27-cp27mu-manylinux2010_x86_64.whl
CVE-2023-38325	cryptography-3.2.1-cp27-cp27mu-manylinux2010_x86_64.whl
CVE-2023-50782	cryptography-3.2.1-cp27-cp27mu-manylinux2010_x86_64.whl

Base branch total remaining vulnerabilities: 33
Base branch commit: null

Total libraries scanned: 100

Scan token: 33e36aca476045138efd4bc02b5c9ff8

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[Snyk] Security upgrade jinja2 from 2.11.2 to 3.1.5 #215

[Snyk] Security upgrade jinja2 from 2.11.2 to 3.1.5 #215

Security Report

Re-running checks...

[Snyk] Security upgrade jinja2 from 2.11.2 to 3.1.5 #215

Are you sure you want to change the base?

fix: requirements.txt to reduce vulnerabilities

[Snyk] Security upgrade jinja2 from 2.11.2 to 3.1.5 #215

Security Report

Re-running checks...