mirror of
https://github.com/reconurge/flowsint.git
synced 2026-07-11 22:16:24 -05:00
[PR #174] [MERGED] fix(deps): upgrade Python dependencies to patch 27 known vulnerabilities #3054
Reference in New Issue
Block a user
Delete Branch "%!s()"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
📋 Pull Request Information
Original PR: https://github.com/reconurge/flowsint/pull/174
Author: @dextmorgn
Created: 6/5/2026
Status: ✅ Merged
Merged: 6/5/2026
Merged by: @dextmorgn
Base:
main← Head:chore/security-dependency-upgrades📝 Commits (1)
9fcc60cfix(deps): upgrade Python dependencies to patch 27 known vulnerabilities📊 Changes
6 files changed (+1295 additions, -1385 deletions)
View changed files
📝
flowsint-api/pyproject.toml(+3 -3)📝
flowsint-core/pyproject.toml(+6 -6)📝
flowsint-enrichers/pyproject.toml(+3 -3)📝
flowsint-types/pyproject.toml(+2 -2)📝
pyproject.toml(+1 -1)📝
uv.lock(+1280 -1370)📄 Description
pip-audit reported 27 vulnerabilities across 12 packages, including cryptography PYSEC-2026-36 (CVSS 9.8) used by the vault, a starlette Host-header path bypass, and python-multipart arbitrary file write.
All four module test suites pass (458 tests). pip-audit now reports no known vulnerabilities.
🔄 This issue represents a GitHub Pull Request. It cannot be merged through Gitea due to API limitations.