Skip to content

Commit 743ad4b

Browse files
dannyadairdannyadair
committed
chore(deps): Fix CVE in pygments by upgrading to >=2.20.0
Bump transitive dependency to resolve GHSA-5239-wwwm-4pmq.
1 parent cf180f2 commit 743ad4b

2 files changed

Lines changed: 9 additions & 4 deletions

File tree

pyproject.toml

Lines changed: 3 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -12,6 +12,9 @@ dependencies = [
1212
"pydantic",
1313
"pypdf",
1414
"ruamel.yaml",
15+
16+
# Indirect deps security updates
17+
"pygments>=2.20.0",
1518
]
1619
readme = "README.md"
1720
requires-python = ">= 3.11"

uv.lock

Lines changed: 6 additions & 4 deletions
Some generated files are not rendered by default. Learn more about customizing how changed files appear on GitHub.

0 commit comments

Comments
 (0)